Head of Information Security

Technical Head of Information Security required for financial services firm. The role will be both strategic and technically hands on as it's a small function. What You'll Do

• Lead and support a small, global cybersecurity team.
• Create and manage a strategic security plan aligned with company goals and ISO 27001.
• Proactively identify and address security risks and threats.
• Respond to and manage cybersecurity incidents and breaches.
• Conduct risk assessments, penetration tests, and other security evaluations.
• Keep senior leadership updated on security posture and key metrics.
• Build relationships with security leaders in similar firms to stay ahead of threats and trends.
• Ensure compliance through audits and incident response exercises.
• Collaborate with tech teams to ensure secure software and infrastructure.
• Manage third-party security vendors and track their performance.
• Run regular training to promote cybersecurity awareness across the company.

• Experience leading high-performing global security teams.
• Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA).
• Background in network, cloud (Azure), endpoint, and application security.
• Experience building and running company-wide security programs.
• Proven ability to handle real and simulated cybersecurity incidents.
• Familiarity with security operations and forensic analysis tools.
• Excellent communication skills, with experience presenting to executive leadership.