Head of Security and Operations

Are you ready to rethink your routine? We’re looking for a Head of IT Operations and Security who will be responsible for ensuring the seamless operation, continuity, and security of the organization's IT environment, across digital and stores. This role will oversee IT support services, manage and mitigate security risks, and coordinate application support and maintenance efforts in collaboration with the Engineering team.  As such you will be responsible for creating the new function, processes and policies. Initially you will be relied upon mainly for providing centralised operational governance and co-ordination across teams to achieve operational stability and control. While not a security specialist, the successful candidate will possess sufficient expertise to identify risks and ensure best practices are followed, engaging specialist third-party assistance as required.  

Welcome to Trinny London!

Here at Trinny London, we’re changing the face of makeup and demystifying skincare, and we're only just getting started. Founded in 2017 by Trinny Woodall, Trinny London is challenging people all over the world to rethink their routines.

We have achieved tremendous growth since 2017 and we’re proud to be one of Europe’s fastest-growing beauty brands. We’re generating millions of sales by developing innovative products, acquiring hundreds of thousands of supporters and customers all over the world, and more importantly, building a talented and motivated team to support our fantastic growth.

Our Values

We live by three core values: we bring fearless passion, we act with smart intent and we all wear yellow.

We always go the extra mile, working together to push boundaries and celebrate our wins and learnings as a team. We listen to every idea, big or small, and make considered decisions. We support each other to achieve our goals and thrive on collaboration.

The Role 

Your daily to-dos might look like this:

IT Operations Management

Work in partnership with Platform and Software Engineering and or third party partners to:

• Ensure that day-to-day IT operations, systems, networks, and services function efficiently and meet business needs.
• Set, measure and monitor performance KPIs.
• Manage maintenance and patching schedules to ensure that this is carried out to achieve optimum system performance
• Develop and maintain IT operational processes, policies, and procedures to ensure high availability and performance.

• Manage IT support services, ensuring timely and effective resolution of incidents and service requests.

• Identify and lead initiatives to improve IT operational efficiency, scalability, and reliability and cost optimization.

• Manage software vendor relationships and service-level agreements (SLAs) to ensure optimal service delivery.

• Manage vendor renewal schedules and negotiations, engaging Portfolio and Engineering Teams to validate ongoing requirements.

• Lead End User Computing provision and support.

• Create and provide a support framework for retail stores, working in partnership with engineering teams and or third parties.

Business Continuity and Disaster Recovery

Working in partnership with Platform and Software Engineering: 

• Develop, implement, and maintain business continuity and disaster recovery plans for IT systems.
• Ensure regular testing and validation of disaster recovery procedures.

Working in partnership with the Portfolio and Analysis Team, identify critical systems and processes to prioritize recovery efforts in case of outages.

Security Risk Management

• Identify, assess, and manage IT security risks to ensure the protection of company assets and data.

• Implement and maintain security policies and procedures aligned with industry standards and regulatory requirements.

• Collaborate with third-party specialists to perform security assessments, penetration testing, and audits as needed.

• Coordinate responses to security incidents and ensure root cause analysis and mitigation plans are in place.

• Lead a programme of security education and training across the business.

• Organise provision of application support from the Engineering Team in collaboration with the Head of Engineering.

• Work with Engineering to establish and monitor performance metrics for application support.

• Ensure a structured approach to application issue tracking, escalation, and resolution.

• Work with the Head of Engineering to set a schedule of support coverage for global operating hours.

• Lead and mentor the IT operations team, fostering a culture of accountability and continuous improvement.

• Collaborate with cross-functional teams to align IT operations and security initiatives with business objectives.

• Act as a trusted advisor to senior leadership on IT operational and security matters.

Requirements

These skills will help you go far in this role:

• Strong understanding of IT operations in a modern multi-channel retail business, with a particular focus on cloud platforms, application support and end user computing.

• Adept at identifying and managing security risks, with the ability to recognize when specialist expertise is required.

• Experience in business continuity planning and disaster recovery.

• Experience of vendor selection and management and contract negotiation.

• Excellent problem-solving skills with the ability to prioritize and manage multiple tasks effectively.

• Strong interpersonal and communication skills to work with technical and non-technical stakeholders.

• Prior experience in IT leadership roles, with oversight of  security functions.

• Familiarity with frameworks such as ITIL, ISO 27001, or NIST (accreditation not a requirement).

• Knowledge of cloud platforms (e.g. AWS, GCP) and modern IT operations practices.

• An advocate of Agile principles and understanding of the DevOps model
• Pragmatic approach to balancing budget and operational impacts with security considerations.

• Proactive mindset with a focus on continuous improvement and risk mitigation.

• Collaborative leadership style that fosters teamwork and alignment across departments.

• Ability to remain calm and decisive under pressure, especially in crisis situations.
• Degree not required however the candidate must demonstrate a strong track record of personal improvement, progression and achievement.

• Relevant certifications (e.g., ITIL, CISSP, CISM) are a plus but not mandatory.

We love to hear from anybody interested in Trinny London! Although it’s useful to have the skills listed above, we’re always eager to hear from ambitious people looking for their next challenge. 

Benefits

Our mission is to give our customers the tools they need to be their best. And the same goes for our team through our benefits:

• Hybrid and flexible working, with core working hours
• 25 days holiday (we're also partial to a handful of spontaneous and well-earned Wellbeing Days throughout the year, as well as Early Finish Fridays and Summer Fridays)
• Welcome to Trinny London Starter Stack and swag
• Company discount for yourself, your friends, and family
• Vitality health scheme, EAP and Medicash (including dental, optical & audiological care)
• An annual personal training and development budget
• Enhanced family friendly packages 
• Pension scheme
• Cycle to work scheme
• T-Parties = many office socials as well as summer and festive celebrations!
• Rewards and Recognition Scheme (awarding length of service with gifts, vouchers and additional annual leave)

Equal Opportunities

We celebrate diversity in our customers, our products, and the teams we build. We champion inclusivity and want everyone to be the best versions of themselves.

We’re committed to equal opportunities and welcome people from all backgrounds, with their unique perspectives, ideas and experiences.