Role:Head of Information Security
Location:Horwich, BL6 6JW
Contract:Full-Time Hours / Permanent
Company:EG Group
About the Role:
An opportunity has arisen for a Head of Information Security to join our Cybersecurity team at EG Group. As Head of Information Security, you will define and lead the global information security strategy in partnership with the Technology Steering Group and senior leadership team. This is a strategic leadership role responsible for safeguarding the organisation’s digital assets, strengthening resilience, and ensuring security practices align with business objectives and risk appetite.
You will oversee security governance, architecture, operations, and incident response, providing expert guidance on cybersecurity risk, regulatory compliance, and evolving threat landscapes. Acting as a trusted advisor to senior stakeholders, you will translate complex technical risks into clear, actionable insight and drive a secure-by-design culture across the organisation.
This role is suited to an experienced cybersecurity leader who thrives in complex, regulated environments and is motivated by shaping secure, future‑ready digital organisations.
Why Join EG Group?
* Discretionary performance-based bonus scheme
* Grow your career – gain accredited qualifications, apprenticeships, and progression opportunities within a global organisation
* Hybrid working – up to 2 days per week (dependent on role and business needs)
* Salary Sacrifice Schemes – Cycle to Work and Car Scheme available
* Enhanced Maternity & Paternity leave
* Generous annual leave entitlement
* Annual leave buy back scheme – purchase up to 5 additional days
* Discounted gym membership – stay healthy and save on fitness costs
* One paid volunteering day per yearWellbeing facilities – space to relax and recharge
* Free secure on-site parking
* Dress Down Fridays
* Free VDU eye test
What you’ll be doing:
* Defining and executing the enterprise-wide information security strategy aligned to business priorities and risk appetite.
* Leading multidisciplinary security teams across GRC, architecture, operations, and incident response, fostering a high-performance culture.
* Embedding recognised security frameworks and standards (e.g., ISO 27001, NIST CSF, NIS2, DORA) into policies, processes, and technology platforms.
* Overseeing security operations, monitoring, detection, and incident response to maintain the confidentiality, integrity, and availability of information assets.
* Partnering with IT, Risk, Compliance, Legal, and operational teams to identify and mitigate cyber risks and strengthen governance practices.
* Ensuring secure-by-design principles are embedded across technology architecture and transformation programmes.
* Supporting business continuity and disaster recovery planning by integrating cybersecurity into wider resilience frameworks.
* Providing strategic advice to senior leadership and representing the function in internal forums and external engagements where required.
This list is not exhaustive and may be added to or amended from time to time.
What we’re looking for:
* Fully qualified with relevant industry certifications (e.g., CISSP, CISM, CISA, SABSA) and a degree in Information Security, Computer Science, or equivalent experience.
* Proven senior leadership experience in information and cybersecurity within complex, multi-site, or multinational environments.
* Extensive experience developing and delivering enterprise-wide security strategies aligned to recognised frameworks such as ISO 27001, NIST CSF, CIS Controls, or DORA.
* Strong knowledge of cloud and hybrid security environments, including Microsoft 365 and Azure.
* Demonstrated ability to build and lead high-performing security teams across operations, architecture, and advisory functions.
* Deep understanding of operational security controls including EDR/XDR, SIEM platforms (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management.
* Experience contributing to audits, compliance initiatives, and risk assessments within regulated sectors.
* Excellent communication and influencing skills, with the ability to engage and advise senior executives and boards.
* Strategic, resilient, and adaptable, with the ability to balance commercial priorities and cyber risk in a fast-paced environment.
Who is EG Group?
EG Group is a leading global convenience retailer, operating a wide range of brands across multiple sectors including fuel, foodservice, and grocery retail. With a presence in over 7 countries and a commitment to innovation and customer service, EG Group continues to expand its portfolio and reach. Our company is focused on delivering value to its customers, partners, and stakeholders through efficient operations and strategic growth.
Please note - the successful applicant will be subject to a DBS check which will be funded by EG Group.
#J-18808-Ljbffr