Position Description:
At CGI, you’ll take a leading role in securing the delivery of critical services for a high-assurance client environment. As a Cyber Security Lead, you’ll shape security outcomes at both a strategic and operational level, embedding security-by-design principles into delivery from the outset. You’ll guide teams to build secure, resilient services that meet demanding assurance standards, while fostering a culture of ownership, collaboration, and continuous improvement. Supported by experienced colleagues and proven delivery frameworks, you’ll be empowered to influence decisions, strengthen governance, and protect systems that truly matter.
CGI was recognised in the Sunday Times Best Places to Work List and has been named a UK ‘Best Employer’ by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go.
Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This role requires full-time on-site.
Your future duties and responsibilities:
In this role, you will lead a team of Security Assurance Consultants, taking responsibility for securing the delivery of planned, agile, and operational services. You will ensure security is considered early and consistently, applying secure-by-design principles across change, delivery, and operational activity. Working closely with security architects, you will direct consultants, oversee contracted security activities, and ensure appropriate policies, standards, and procedures are defined and embedded.
You will act as the primary security interface between CGI and the client, building trusted relationships through regular strategy and governance engagement. Supported by a collaborative environment, you will assess change impacts, manage risk pragmatically, and provide clear security leadership that enables delivery while maintaining a strong security posture.
Key responsibilities include:
> Lead & Direct: Manage and coordinate Security Assurance Consultants to deliver secure services.
>Embed Secure Design: Ensure security-by-design principles are applied across planned change, agile delivery, and live services.
>Govern & Assure: Oversee all security-related activities, ensuring compliance with agreed policies and assurance requirements.
>Advise & Influence: Act as the primary security point of contact with the client, attending governance and strategy forums.
>Assess & Mitigate: Conduct security risk assessments and security impact assessments for proposed changes.
>Respond & Improve: Address client security queries and drive continuous improvement in security practices.
Required qualifications to be successful in this role:
You will bring strong leadership experience within cyber security or security assurance roles, with a clear understanding of secure-by-design approaches in high-assurance environments. You should be confident working on-site, engaging senior stakeholders, and guiding teams to deliver secure, compliant services.
You should have:
> Proven experience leading security or assurance teams in complex or regulated environments.
>Strong understanding of security governance, risk management, and assurance processes.
>Demonstrable experience applying secure-by-design principles across delivery lifecycles.
>Experience working with security architects and delivery teams to shape secure solutions.
>The ability to conduct and review security risk and impact assessments.
>Excellent stakeholder management and communication skills.
>CCP SIRA accreditation (or operating at this level).
> UK sole nationality and eligibility to meet HLC requirements.
#LI-JS2
Skills:
1. Client Management
2. Cyber
3. Information Assurance