Head of Cyber Security

Job Title: Head of Cyber Security

Salary: £82,000 - £95,000

Location: London

Key Skills: Cyber Security Strategy & Governance, Incident Response & Risk Management, Stakeholder & Board-Level Communication, Leadership & Team Development

We are seeking a highly experienced Head of Cyber Security to lead the delivery of a best-in-class security posture within a large, complex public sector organisation. This is a senior, business-critical position with responsibility for all aspects of information security.

The successful candidate will ensure the organisation achieves and maintains compliance with public sector and healthcare-specific standards, while also driving operational excellence across the enterprise. You will work closely with internal teams to safeguard staff, service users, and wider stakeholders from cyber risk. Protecting critical health services from evolving threats is a top priority, and this role plays a central part in ensuring robust security measures are in place.

Reporting directly to the Director of Digital Services, the Head of Cyber Security will be a core member of the senior digital leadership team. You will oversee the development, implementation and governance of information security across the organisation, spanning infrastructure, applications, medical devices, communications, and policy frameworks.

Key Duties & Responsibilities

• Lead the development and delivery of a comprehensive cyber security strategy across both corporate and clinical areas.
• Oversee the organisation's information security portfolio, including compliance frameworks, risk assessments, and threat intelligence.
• Provide active leadership for all aspects of cyber security covering infrastructure, applications, and clinical technology.
• Ensure business operations remain secure and resilient, embedding security at the heart of service delivery.
• Maintain an up-to-date understanding of the sector's cyber threat environment and adapt strategies accordingly.
• Establish, enhance and enforce operational procedures aligned with recognised standards and best practices.
• Contribute security expertise to major transformation projects, ensuring risks are identified and mitigated.
• Promote a culture of security awareness across the organisation, communicating risks and best practices effectively to staff at all levels.
• Brief the Board, Executive Team, and senior stakeholders on cyber security status, risks, and performance.
• Partner with the Director of Digital Services to shape long-term strategy and ensure the organisation meets the expectations of a critical public sector healthcare provider.

Person Specification

Essential Qualifications & Experience

• Strong background in cyber security, with extensive experience in managing security operations, policies, and risk management.
• Demonstrable knowledge of security standards, frameworks and compliance (e.g. ISO 27001, NIST, Cyber Essentials Plus).
• Proven experience in developing and delivering cyber security strategies within complex organisations.
• Hands-on expertise across infrastructure, applications, and cloud environments.
• Track record of leading incident response, threat detection and vulnerability management activities.
• Strong leadership and stakeholder management skills, with the ability to engage senior executives, boards, and technical teams alike.
• Experience influencing and embedding a culture of cyber awareness across diverse teams.
• Clear communication and presentation skills, with the ability to explain technical concepts to non-technical audiences.

Desirable Qualifications & Experience

• Professional certifications such as CISSP, CISM, CISA, or equivalent.
• Prior experience working in the public sector or other highly regulated environments.
• Experience working with third-party vendors, suppliers and managed security services.
• Knowledge of security requirements for operational or clinical technologies (e.g. IoT, medical devices, OT security).
• Experience contributing to organisational strategy beyond purely technical delivery.

Personal Attributes

• Strategic thinker with the ability to also operate hands-on when required.
• Collaborative leadership style with excellent influencing and negotiation skills.
• Highly motivated and resilient, with a proactive and pragmatic approach to problem solving.
• Ability to remain calm and decisive under pressure.
• A strong leader who is also approachable, credible, and trusted.
• Ambitious and forward-looking - this role could suit an established cyber security leader, or an experienced senior manager ready to step up into a "Head of" role.
  
  

  Job Title: Head of Cyber Security

  Salary: £82,000 - £95,000

  Location: London

  Key Skills: Cyber Security Strategy & Governance, Incident Response & Risk Management, Stakeholder & Board-Level Communication, Leadership & Team Development

Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy.

To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.