Job Description
One of Reed Technology’s best MSPs clients has a requirement for a CISO to come on board and deliver strategic security leadership, regulatory guidance, and cyber risk oversight to financial services clients. Further details as follows:
Role: Chief Information Security Officer (CISO)
Day rate: Competitive OUTSIDE IR35
Time commitment: Expected time commitment – 2-3 days per week, although this could rise to 4-5 days depending on client engagement
Start date: ASAP (Targeting mid-June)
Location: Remote – with occasional client visits in person in London
About the Role
We are seeking a highly experienced and strategic Contract vCISO to provide expert security leadership to our financial services clients. This role is ideal for a senior security professional who thrives in a client-facing, advisory capacity and is passionate about helping organisations meet regulatory expectations and strengthen their cyber resilience.
As a vCISO, you will act as an outsourced Chief Information Security Officer, delivering tailored security advice, overseeing cyber risk management, and supporting clients through regulatory and audit readiness processes (e.g., ISO 27001, SOC 2). You will also play a key role in shaping and expanding our security advisory services.
Key Responsibilities
* Serve as a trusted security advisor to FCA-regulated financial services clients.
* Provide strategic guidance aligned with FCA, PRA, SYSC, and GDPR requirements.
* Lead and support risk assessments, security posture reviews, and audit preparations (ISO 27001, SOC 2).
* Communicate effectively with board-level stakeholders and senior leadership.
* Collaborate with the sales team to evolve existing services and design new offerings.
* Support the transition to a long-term fractional retainer model for vCISO services.
Required Experience & Skills
* Proven experience advising FCA-regulated firms.
* Deep knowledge of SYSC, GDPR, and at least one audit framework (ISO 27001 or SOC 2).
* Strong client-facing and communication skills, with the ability to engage C-level and board stakeholders.
* Demonstrated ability to deliver pragmatic, business-aligned security strategies.
* UK-based, with availability for occasional in-person meetings in London.