Head of Information Security

Get AI-powered advice on this job and more exclusive features.

This range is provided by Intaso. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

Direct message the job poster from Intaso

Head of Interim - Building Security teams to shape and protect the future.

Head of Information Security

Location - London (Hybrid)

Salary - £110,000 to £140,000 + Benefits

Type - 12 month FTC with a view to become perm or extend past 12 months

Job Overview

Intaso’s longstanding client is looking for a skilled and experienced Information Security Lead / Head to develop and oversee the organisation's cybersecurity strategy and operations. This role requires expertise in risk management, compliance, and security operations, alongside strong leadership capabilities to drive the implementation of robust security measures.

About the Team

Our client's technology division is newly established and poised for an exciting future in shaping enterprise technology, digital initiatives, and data strategy. We operate in a fast-moving, agile environment, prioritising end-user experience while fostering innovation, collaboration, and continuous improvement.

Team Structure

The Information Security Lead will report directly to the Head of Technology and be a key member of the technology leadership team.

About You

You have a proven history of developing and implementing high-quality security practices and managing security operations effectively. You thrive in high-stakes environments and are adept at delivering scalable, reliable security solutions in a fast-paced setting. Insurance experience is highly desirable.

Key Responsibilities

• Develop and maintain a cybersecurity strategy aligned with organisational goals and regulatory requirements.
• Conduct risk and vulnerability assessments to identify security gaps.
• Manage audits, bid responses, and third-party security vendors, ensuring SLAs are met.
• Ensure compliance with industry standards such as ISO 27001, Cyber Essentials+, NIST, and IEC 27000 series.
• Act as the escalation point for security incidents, ensuring efficient resolution.
• Provide regular reporting on security performance, incidents, and risk analysis.
• Lead the Security Operations Centre (SOC) for continuous monitoring and incident response.
• Develop and implement security awareness and training initiatives.
• Conduct regular security audits and assessments to enhance the organisation’s security posture.
• Oversee supplier security risk management and compliance.
• Design and implement technical security solutions, including firewalls, IDS/IPS, encryption, and endpoint protection.
• Work collaboratively with technology teams to ensure secure system design.
• Establish and refine security controls, services, and processes.
• Provide security-related reporting and insights for senior management.
• Lead Governance, Risk, and Compliance (GRC) efforts, ensuring regulatory alignment.

Key Requirements

• Education:
• Bachelor’s or Master’s degree in a relevant field.
• Minimum of 10 years in information security, with at least 4+ years in a leadership role.
• Strong knowledge of security frameworks and standards, including NIST, ISO/IEC 27000 series, SOC 2, and CIS Critical Security Controls.
• Extensive experience with Microsoft Azure security tools and solutions, such as Microsoft Defender, Microsoft Sentinel, Azure Key Vault, Azure Firewall, and Azure Security Center.
• Expertise in risk management, incident response, and security operations.
• Strong leadership, communication, and stakeholder management skills.
• Ability to manage multiple priorities effectively under pressure.
• Familiarity with regulatory compliance frameworks, including financial sector requirements.
• Certifications such as CISSP, CISM, or CISA are highly advantageous.

Seniority level

Director

Employment type

Full-time

Job function

Information Technology

Industries

Insurance and Financial Services

#J-18808-Ljbffr