We are seeking a Head of Information and Cyber Security to lead our organisation wide approach to protecting the Council and the people we serve. This is a senior, high impact leadership role for a professional who can combine technical authority with strategic influence, partnership working, and confident decision making at the highest levels.
We welcome the use of artificial intelligence as a drafting aid. However, applications must clearly evidence your own experience, judgement and decision making. Applications that rely on generic or unverifiable content are unlikely to progress. This role requires a regular onsite presence to provide visible leadership, engage with senior stakeholders, and lead during incidents.
About the role
This is a strategic leadership role. While you will bring strong technical credibility, hands on configuration or operational delivery are not the focus of this post.
As our Head of Information and Cyber Security, you will:
1. Lead the development, implementation and continuous improvement of the Council’s cyber security framework, aligned to our Digital, Data and AI Strategy.
2. Provide clear, evidence based advice and guidance to senior leaders, Members, and corporate boards, representing Digital Services at Audit Committee, Assurance Board, Overview & Scrutiny and Cabinet.
3. Shape and drive innovative approaches to information and cyber security, ensuring our systems, services and solutions are secure by design.
4. Manage and inspire a multidisciplinary inhouse team and ensure effective oversight of key suppliers and partners.
5. Oversee the Council’s readiness for cyber incidents and personally lead the response to major technical security events, working closely with bodies such as the NCSC, LOTI and regional cyber‑resilience networks
6. Ensure cyber security is embedded into business continuity, risk management, procurement, and major change programmes.
7. Drive measurable organisational awareness and culture change, promoting secure behaviours across a diverse workforce.
8. Maintain compliance with major frameworks and standards including PSN, PCIDSS, DPA, GDPR and ISO27001.
9. Manage budgets, contribute to business cases and ensure value for money in all activity.
About you
We are looking for a candidate who brings experience of working in an environment with high public accountability, political scrutiny, legacy and modern technology estates, constrained budgets, and live service risk, delivering at pace while ensuring security and resilience.
You will have personally led complex cyber incidents through decision making, stakeholder communication, regulatory engagement, and recovery.
You will also bring:
10. Demonstrable capability in cyber security risk management, security frameworks, service management and incident response at scale.
11. Experience influencing senior stakeholders and communicating complex issues clearly to nontechnical audiences.
12. A strong track record of leading, developing and motivating a high performing team.
13. Deep knowledge of standards such as ISO27001, PCIDSS and associated regulatory frameworks.
14. Experience holding suppliers to account, including challenging assurance, delivery quality, and value for money.
Qualifications
At least one of the following (or an equivalent qualification we can independently verify):
15. CISSP
16. CISM
17. CRISC
Leadership & behavioural qualities
We want a leader who:
18. Takes responsibility with a positive, problem-solving mindset.
19. Acts with openness, honesty and respect.
20. Listens actively, reflects and adapts.
21. Works collaboratively across boundaries to find solutions.
Other requirements
This role requires a minimum of two days per week onsite in Enfield, with additional attendance during major incidents, key meetings, or periods of heightened risk.
Why Enfield Council?
Working for Enfield means joining a diverse, values‑driven organisation that is committed to fairness, inclusion and improving outcomes for all residents. You’ll shape the Council’s cyber resilience at a time of significant organisational transformation, with committed leadership and dedicated investment in digital innovation and security.
We welcome applications from candidates of all backgrounds and encourage applications from under‑represented groups. We are a Disability Confident employer.
How to apply
If you are an experienced cyber security leader with the strategic vision, professional credibility and inclusive leadership style to shape Enfield’s security future, we would love to hear from you.