Head of Information Security
London Area / South East (Hybrid) | Permanent
Are you ready to define and lead the security strategy of a fast-growing, technology-driven organisation operating in a highly regulated, data-sensitive environment?
We’re partnering with an ambitious, scaling business seeking a Head of Information Security to take ownership of its global security and compliance capability. This is a rare opportunity to shape strategy, influence executive decision-making, and act as the authoritative voice on security across the organisation.
The Opportunity
This role sits at the intersection of strategy, governance, and hands-on leadership. You’ll be responsible for building, evolving, and embedding a best-in-class security posture while ensuring alignment with key industry standards.
You’ll work closely with senior leadership, customers, auditors, and technical teams, acting as both a trusted advisor and operational leader in an ever-evolving threat landscape.
Responsibilities
* Define and deliver the organisation’s information security strategy, aligned with business objectives
* Own and evolve the Information Security Management System
* Lead compliance and certification across key industry security standards (including ISO 27001, PCI-DSS and SOC 2)
* Act as the subject matter expert for all security and compliance matters internally and externally
* Identify capability gaps and implement pragmatic, scalable solutions
* Lead incident response, threat modelling, and vulnerability management end-to-end
* Oversee and optimise the security tooling landscape
* Partner with engineering teams to embed secure-by-design and DevSecOps practices
* Represent security in customer engagements, audits, and commercial discussions
* Manage third-party risk and vendor security assurance
What We’re Looking For
* Proven leadership experience in information security within regulated environments
* Deep expertise across recognised frameworks such as ISO 27001, PCI-DSS, NIST, and relevant regulations (e.g. GDPR)
* Strong track record of leading audits and achieving successful compliance outcomes
* Hands-on experience managing security incidents, vulnerability management, and threat mitigation
* Solid understanding of cloud security principles
* Ability to influence senior stakeholders and clearly communicate complex security concepts
* Experience embedding secure software development practices
* Relevant certifications such as CISSP, CISM, or CISA
Why This Role?
* Strategic, high-impact position with executive visibility
* Opportunity to shape and mature a security function in a growing business
* Work in a forward-thinking environment where security is a genuine priority
* Collaborative culture with strong cross-functional engagement
If you’re a security leader who thrives on ownership, influence, and building resilient systems in complex environments, this is an opportunity to make a meaningful impact.
Apply now or reach out for a confidential discussion.