Marshall Land Systems – Head of Security & Compliance
Location: Cambridge, UK
Job Overview
The Head of Security and Compliance is responsible for leading the global security and compliance strategy across all UK, European and Canadian sites, programmes and projects. The role provides senior expertise across information security, cyber security, data governance and defence security requirements, ensuring the organisation meets all legislative, regulatory and contractual standards. Acting as the principal link between technical teams, business leadership, government partners, clients and external authorities, the incumbent maintains a robust, compliant and resilient security environment.
Responsibilities
Strategic Security, Data Governance & Compliance Leadership
* Provide senior leadership on IT and data compliance, including global expertise in data management, information security and GDPR requirements.
* Establish, maintain and continuously improve the organisation’s security frameworks, procedures, policies and standards, ensuring alignment with legislation, MoD requirements, Government guidelines, contract requirements and corporate expectations.
* Lead initiatives to embed and sustain a robust security culture across all business areas.
Cyber Security Oversight & IT Assurance
* Oversee cyber security governance, working closely with IT teams and managed service providers to ensure controls are implemented, functioning, tested and routinely audited.
* Provide senior guidance to ensure IT systems and infrastructure comply with security procedures, data protection standards and operational requirements.
* Develop and deliver organisation-wide training on IT compliance, information security and cyber security best practices.
Defence Security, Accreditation & Classified Material Management
* Act as the organisation’s Security Controller and Crypto Custodian, ensuring full compliance with defence security obligations.
* Manage all aspects of personnel and facility security clearances, security accreditation and the handling, processing, storage, mustering and destruction of protectively marked and crypto-related material.
* Lead the management of Security Aspects Letters (SALs), security reporting, audits and all requirements linked to defence contracts.
Physical, Facilities & Operational Security
* Plan, implement and oversee FSC-compliant physical and operational security measures for sites, facilities, programmes and projects.
* Manage contracts and performance for security services, systems and equipment.
* Ensure security vetting processes are effectively managed in partnership with HR and deliver mandatory security inductions and briefings.
Assurance, Monitoring & Reporting
* Lead the audit and assurance programme to validate the effectiveness of security procedures, controls and compliance measures.
* Analyse security incidents, produce monthly security performance reporting and proactively address emerging patterns or risks.
* Maintain organisational security SLAs, manuals and compliance documentation, ensuring all accreditations remain current and properly governed.
Stakeholder Engagement & External Relations
* Work closely with internal stakeholders to anticipate and resolve security risks, ensuring programmes and projects meet required security standards.
* Maintain influential relationships with external commercial and government security advisors, including the Police, CTSA, MOD, NPSA, DE&S and other relevant agencies.
* Represent the organisation confidently in all security-related engagements, audits and consultations.
Continuous Improvement & Environmental Awareness
* Monitor changes in legislation, technology, threat landscapes and best practices to ensure the organisation remains compliant and well-protected.
* Drive continuous improvement across all areas of security and compliance.
Qualifications
* Extensive experience in security, information assurance, cyber governance or compliance roles.
* Proven track record leading security in a multi‑site or multinational organisation.
* Experience working with MoD, NPSA, DE&S, government security agencies or other regulated defence/security environments.
* Experience handling classified information, managing clearances or acting in roles such as Security Controller or Crypto Custodian.
* Demonstrated experience overseeing cyber security controls, audits or compliance in partnership with IT teams and MSPs.
* Familiarity with frameworks such as ISO 27001, NIST, CAF or similar standards.
* Experience developing corporate security policies, frameworks and operating procedures.
* Experience leading security accreditation, assurance reviews or certification maintenance.
* Exposure to facility and physical security planning, contract management and security technology solutions.
* Experience delivering security awareness training and supporting cultural transformation programmes.
* Successful track record working with senior leadership teams, HR, IT, facilities, programme management and external partners.
* Experience presenting security performance, risks and incident insights to executive boards or senior stakeholders.
* Experience analysing incidents, producing incident reports and implementing corrective actions.
Additional Local Needs
* The successful candidate will need to be eligible to obtain full SC clearance.
Benefits
* 27 days holiday increasing with service up to 30 days (option to buy/sell)
* Pension contributions up to 9%
* Private medical insurance for you and your partner
* Extensive flexible benefit programme including Cycle to Work
* Life assurance at 4× basic salary
* Enhanced parental leave and pay
* Paid volunteering leave
* Access to industry-leading wellbeing resources and tools
Marshall Group is an equal opportunity employer and values a diverse and inclusive workplace. All qualified candidates will receive consideration for employment without regard to age, race, colour, religion, genetic information, sex, sexual orientation, gender identity, national‑origin, disability status, or any other characteristic protected by law.
Seniority level: Executive
Employment type: Full‑time
Job function: Other, Information Technology, and Management
Industries: Defence and Space Manufacturing, Military and International Affairs, Truck Transportation
#J-18808-Ljbffr