CrawlJobs Logo

Head of Information Security & IT Risk

jobs.360resourcing.co.uk Logo

360 Resourcing Solutions

Location Icon

Location:
United Kingdom , Banbury

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

90000.00 GBP / Year
Save Job
Save Icon
Apply Position

Job Description:

You will own the function, shape the strategy and roadmap, and make security an enabler for new technologies and AI. The role involves leading the team, owning budgets, and presenting to executives while working in a regulated environment during a period of digital transformation.

Job Responsibility:

  • Conduct a full security and risk analysis
  • Build and implement strategy
  • Lead and develop the Information Security & IT Risk team
  • Define and deliver the information security and IT risk strategy
  • Own the IT risk register and action plans
  • Oversee security operations and assurance activities
  • Lead incident response and maturity improvement
  • Embed governance aligned to appropriate frameworks and regulatory requirements
  • Update and influence executive stakeholders
  • Modernise the function alongside digital transformation initiatives

Requirements:

  • 10–15 years in information security and IT risk
  • Experience in regulated environments
  • Leading teams
  • Owning budgets
  • Presenting to executive stakeholders
  • Hands-on technical experience
  • Understanding of zero-trust architecture, penetration testing, SIEM tuning, operational resilience, vulnerability remediation
  • Experience leading change
  • Experience building or reshaping a function
  • Ability to assess maturity, prioritise risk and execute improvements
What we offer:
  • Performance bonus (up to 30%)
  • Car allowance (£7192.50)
  • Private healthcare for you and your family
  • Company pension scheme
  • Flexible benefits (gym membership, tech, health assessments and more)
  • Access to an online wellbeing centre
  • Discounts with a wide range of retailers
  • 30 days’ holiday plus bank holidays, increasing with service, with buy/sell options
  • Electric Vehicle / Plug-in Hybrid Vehicle scheme

Additional Information:

Job Posted:
February 20, 2026

Expiration:
April 02, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
360 Resourcing Solutions - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Head of Information Security & IT Risk

Security Strategy and Risk Management Head of Department

The Security Strategy and Risk Management Head of Department is a senior leaders...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across Information Security, GRC/Risk Management, customer/vendor security management and/or strategic operations
  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Administration or a related discipline
  • Excellent stakeholder management, communication, and leadership skills
  • Demonstrated experience working across multi-disciplinary teams to achieve common objectives
  • Proficient in English for effective communication and coordination
Job Responsibility
Job Responsibility
  • Lead enterprise-wide risk assessment, risk issue management, and risk exception management
  • Maintain and enhance risk management frameworks aligned with industry best practices
  • Deliver insightful, data-driven risk reporting to senior leadership
  • Oversee the Information Security compliance and control assurance program
  • Lead coordination of internal and external audits, assessments, and certification processes
  • Lead the Third-Party Risk Management (TPRM) program
  • Oversee creation, governance, maintenance, and communication of Information Security policies, standards, and procedures
  • Direct the Information Security Training and Awareness program
  • Partner with the CISO to define and maintain the Information Security strategic roadmap
  • Lead budget planning, forecasting, tracking, and optimization for the full Information Security organization
  • Fulltime
Read More
Arrow Right

Information Security Senior Analyst

The Info Sec Prof Senior Analyst is an intermediate-level position responsible f...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • applicable certifications or willingness to earn within 12 months of joining
  • consistently demonstrates clear and concise written and verbal communication
  • proven influencing and relationship management skills
  • proven analytical skills
  • ICND 1 Certification or equivalent knowledge in Networking
  • excellent Microsoft Excel skills
  • basic network infrastructure knowledge
  • ability to work with Big Data
  • exhibiting a high degree of flexibility and ability to multi-task, seeking guidance where necessary
Job Responsibility
Job Responsibility
  • Identify potential information security (IS) risks and make recommendations for enhancement
  • collect and analyze security risk evidence and coordinate with internal and external compliance and auditing agencies / officials
  • execute meetings and communicate complex security topics and safe IS practices with all levels of the organization
  • ensure that controls are utilized daily and that non-compliance remediation is addressed
  • provide IS consulting services, including interpreting and/or clarifying information security policy, procedures, standards or concepts
  • assist with defining and implementing IS standards to align procedures and practices in compliance with Citi standards
  • educate and advise on safe information security practices and current, changing, and/or recommended information security requirements
  • validate compliance with IS policies, practices, and procedures, and resolve a variety of IS related issues in coordination with the business
  • support the Annual Connectivity Verification process
  • validate legacy connectivity for ownership, registration, and usage
  • Fulltime
Read More
Arrow Right
New

Head of Security and Compliance

The Head of Security and Compliance will be responsible for building and leading...
Location
Location
United States
Salary
Salary:
Not provided
eightsleep.com Logo
Eight Sleep
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-10+ years of experience in security engineering, with deep expertise in mobile app security, IoT device security, or cloud infrastructure security
  • Proven expertise in cybersecurity, cloud infrastructure security (AWS), IoT device security, and corporate risk management
  • Experience in consumer technology, health tech, or regulated industries is highly desirable
  • Strong knowledge of compliance standards (SOC 2, ISO 27001, HIPAA, GDPR, etc.)
  • Excellent communication and stakeholder management skills
  • Ability to balance risk with business agility in a fast-paced startup environment
Job Responsibility
Job Responsibility
  • Oversight and implementation, operation and monitoring of information security tools and processes in customer production environments
  • Responsible for conducting IT risk assessments, documenting identified threats and maintaining risk register
  • Communicates information security risks to executive leadership
  • Reports information security risks annually to Eight Sleep leadership and gains approvals to bring risks to acceptable levels
  • Define and own Eight Sleep’s end-to-end security strategy across cloud, product, corporate, and customer environments
  • Serve as the primary security advisor to the executive team—translating risk into clear business decisions and helping set the company’s security posture and risk tolerance
  • Build and scale Eight Sleep’s security program, including roadmap, processes, metrics, and future team structure
  • Oversee security architecture and practices for software, cloud infrastructure, connected devices (IoT), and data storage
  • Ensure compliance with security frameworks (e.g., SOC 2, GDPR, HIPAA)
  • Lead vulnerability management, threat detection, and incident response
What we offer
What we offer
  • Equity participation
  • Periodic equity refreshments based on performance
  • Every Eight Sleep employee receives a Pod
  • Fulltime
Read More
Arrow Right

Head of Information Security

As River Island’s Head of Information Security, you’ll play a strategic and hand...
Location
Location
United Kingdom , West London
Salary
Salary:
Not provided
riverisland.com Logo
River Island
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in a senior information security role, ideally within a complex, multi-channel retail or technology environment
  • Strong technical grounding across key security domains: network, cloud, endpoint, application, and data security
  • Experience managing or working with vulnerability management tools, SIEM/SOC environments, and incident response processes
  • Familiarity with frameworks and standards such as ISO 27001, NIST, CIS, PCI DSS, and GDPR
  • Excellent communication and stakeholder management skills, with the ability to influence at all levels of the organisation
  • Analytical, pragmatic, and calm under pressure — with a focus on enabling the business, not blocking it
Job Responsibility
Job Responsibility
  • Define, implement, and evolve River Island’s information security strategy in line with business objectives, regulatory obligations, and risk appetite
  • Lead the development and maintenance of Information Security policies, standards, and controls, ensuring alignment with frameworks such as ISO 27001, NIST CSF, and the SANS Top 18
  • Define and report security KPIs/KRIs to senior management to senior leadership representing risk posture, compliance status, and strategic improvement initiatives
  • Own and manage the Information Security Risk Register
  • ensure risks are assessed, documented, and mitigated effectively
  • Lead compliance efforts across GDPR, PCI DSS, and other applicable regulations
  • Conduct and coordinate enterprise-wide risk assessments, audits, and internal reviews
  • Champion a pragmatic, risk-based approach to security — balancing protection, productivity, and customer experience
  • Own and govern IAM standards (RBAC, joiner/mover/leaver, privileged access, MFA, SSO) across corporate, store and customer-facing platforms
  • Oversee operational security activities, including threat detection, vulnerability management, and incident response
What we offer
What we offer
  • Generous 50% staff discount so you can treat yourself to the latest products, and a bargain staff shop on site
  • Reducing Islanders everyday expenses through discounts, benefits, financial advice, wellbeing solutions and more through Reward Gateway
  • A free onsite gym, subsidised restaurant & café to fill you needs
  • Various social events to socialise throughout the year
  • Every family is unique, we support Islanders with all different family setups enhanced maternity, paternity, adoption & fertility treatment
  • We also work closely with the Retail Trust to create dedicated support for all our Islanders
  • Flexible working is a given, on top of payday and summer early finish Fridays
  • Give as you earn scheme, a ‘Giver Island’ day each year and receive matched funding
  • Support with upskilling through on the job training and qualifications
  • A succession plan if you want to progress
  • Fulltime
Read More
Arrow Right

Head of Information Security, Risk and Compliance

Senior leadership position within the IT Operations team. The primary mission is...
Location
Location
United Kingdom , Thame
Salary
Salary:
110000.00 GBP / Year
travelodge.co.uk Logo
Travelodge Hotels Limited
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Certifications: CCSP, CISSP-ISSMP, or CISM
  • Methodologies: ITIL v4 Foundation
  • FAIR Risk Modelling
  • experience in Project Management or Business Change
  • Advanced Tech: Experience defining Zero Trust Architecture (ZTA) and implementing security controls within public cloud environments (IaaS/PaaS)
  • pragmatic, hands-on leader
  • master of communication
  • self-starter
  • technical expertise rooted in securing critical B2B and B2C eCommerce platforms, particularly within hosted and SaaS-heavy environments
  • expert-level knowledge of perimeter, cloud, network, and data security
Job Responsibility
Job Responsibility
  • Strategic Leadership: Develop a continuously evolving security roadmap and "defence in depth" strategy
  • manage both internal teams and strategic third-party partners
  • Operational Management: Oversee 24x7x365 security operations, including continuous monitoring, threat assessment, incident response (CIRT)
  • Risk & Compliance: Develop and maintain an industry-standard Risk Management framework
  • ensure compliance with PCI-DSS, GDPR, and NIST frameworks
  • Governance & Policy: Maintain Information Security policies and conduct regular audits of processes and controls
  • Technical Oversight: Coordinate vulnerability management, penetration testing, and code reviews
  • provide "Secure by Design" architectural guidance for all new initiatives
  • Supply Chain & Budget: Manage a portfolio of security vendors to ensure value and responsiveness
  • oversee the OPEX and CAPEX budgets that enable your function to operate and continuously improve
What we offer
What we offer
  • Annualise Bonus
  • Car Allowance
  • Contributory pension scheme
  • 50% personal discount for hotel bookings and great friends and family discounts too
  • 25 days holiday + bank holidays, increasing with length of service
  • A focus on learning and career development
  • Fulltime
Read More
Arrow Right

Head of Information Security

This is a strategic leadership role which is responsible for leading the transfo...
Location
Location
United Kingdom , Milton Keynes or London
Salary
Salary:
Not provided
triarecruitment.com Logo
TRIA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant leadership experience in enterprise information and cyber security roles, ideally within complex or regulated environments
  • Proven success in leading strategic reviews and transformations of security toolsets, platforms, and operating models
  • Deep technical knowledge of security controls across hybrid cloud, infrastructure, endpoint, and user environments
  • Practical experience delivering cyber security best practices across network, infrastructure, BYOD, web, and cloud services
  • Strong working knowledge of governance and compliance frameworks including ISO 27001, NIST CSF, GDPR, and Cyber Essentials+
  • Demonstrable ability to communicate complex security concepts to non-technical audiences, including board-level stakeholders
Job Responsibility
Job Responsibility
  • Lead the transformation and modernisation of the cyber and information security capabilities
  • Shape and execute a security strategy that aligns with the companies' digital ambitions and evolving risk landscape
  • Lead a complete strategic review of the security landscape, including tools, processes, risk postures, and cultural readiness
  • Report to the board and advise on cyber risk, threats, and mitigation strategies
  • Translate security insights into executive-level communications, influencing investment and change roadmaps
  • Fulltime
Read More
Arrow Right

Enterprise Security Engineer

ASEL, design, develop and deliver fully bespoke and integrated security solution...
Location
Location
United Kingdom , London
Salary
Salary:
45000.00 GBP / Year
asel.co.uk Logo
ASEL GROUP
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 2 years’ experience across multiple disciplines including Intruder, CCTV, Access Control
  • Genetec Experience
  • Lenel Experience
  • Customer focused
  • Excellent telephone manner
  • PC Literate
  • Team player
  • Strong interpersonal and communication skills
  • Ability to work within a continually changing environment
  • Network/IP based product experience
Job Responsibility
Job Responsibility
  • Effective communication between Argenbright Security Europe LTD, Customers, Account Management, Head of Service and Head of Installations
  • Working as a team leader with up to three direct reports
  • Carry out site maintenance and repair activity in line with specifications and plans
  • Communicate any deviations to the Account Manager
  • Ensure all relevant paperwork is delivered to the team upon job completion
  • Ensure customer queries are dealt with in a timely manner
  • Provide leadership to respective Trainee Engineers
  • Carry out mentoring of Trainee Engineers
  • Assist with technical queries from Engineers and Project Managers
  • Ensure team working practices are always maintained to a high standard
What we offer
What we offer
  • Overtime and paid travel time
  • 20 days of holiday plus bank holidays, increasing by 1 per year of service up to 25 days (negotiable)
  • Perkbox incentive - Employee Discount Scheme applicable to over 900 leading UK retailers, including travel, groceries, gym memberships, utilities, and more
  • Opportunities for progression within the company
  • Full training and refresher courses included
  • Company phone and tablet
  • Pension scheme
  • Tools provided
  • Company vehicle and fuel card
  • Employer of the Month award (£50)
  • Fulltime
Read More
Arrow Right

Head of Infrastructure

At Xelix, we work with some of the world’s largest companies to automate and str...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
xelix.com Logo
Xelix
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in infrastructure, platform, or SRE roles
  • AWS Certified Solutions Architect – Professional
  • Prior experience scaling production systems in a growing company
  • Ability to operate production systems under pressure
  • Deep hands-on experience with the AWS cloud platform
  • Strong background in reliability, observability, and incident management
  • Experience leading or mentoring engineers
Job Responsibility
Job Responsibility
  • Platform Strategy & Architecture: Own the long-term platform and infrastructure strategy
  • Design and evolve cloud architecture to support scale, resilience, and performance
  • Set standards for infrastructure, CI/CD, environments, and observability
  • Make architectural decisions and trade-offs
  • Developer Experience (DevEx): Provide infrastructure for the development team to code, test and deploy efficiently
  • Advise during design sessions to help engineers pick the right solutions for projects
  • Reliability & Operations: Own production reliability, uptime, and incident response
  • Define and enforce SLAs and SREs
  • Lead incident response and post-incident reviews
  • Ensure monitoring, alerting, and on-call practices are effective and sustainable
What we offer
What we offer
  • 27 days of annual leave (including 3 days Christmas closing) which increases up to 3 days based on tenure, with the option to roll over, buy or sell up to 3 days
  • Hybrid working with one day a week from our dog-friendly Hoxton office
  • On-site gym and cycle to work scheme
  • Employee discount at over 100 retailers
  • Comprehensive private medical & dental cover with Vitality
  • Enhanced parental leave pay
  • Learning & development culture – £1,000 personal annual budget
  • We’re carbon-neutral and are working towards ambitious carbon reduction goals
  • Lots of team socials & activities
  • Annual team retreat
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy