Head of Information Security

An exciting new opportunity has been created at OCU, we are on the hunt for an experienced Head of Information Security based in Stockport or Preston.

As OCU Group continues to grow with recent acquisitions expanding our operations, the scope and complexity of our Information Security Management System (ISMS) has significantly increased. With a larger technology footprint, more employees, and a growing portfolio of critical technology and business projects, the need for more robust security governance, risk management, and compliance has never been greater.

Safety is at the core of everything we do. "Think Safe, Work Safe, Home Safe" isn't just a slogan it is our way of life. In today’s digital world, security is more than just firewalls and passwords; it is about protecting our people, our data, and our operations from ever-evolving cyber threats.

Are you a passionate, proactive, and hands-on experienced Information Security Manager who can lead from the front ensuring that security isn't a blocker, but a business enabler. The role is about staying ahead of threats, embedding a culture of security awareness, and ensuring our people can work safely—wherever they are.

Duties and Responsibilities

• Safeguard our expanding business by ensuring security policies, risk assessments, and compliance frameworks are both right sized, pragmatic and scale effectively across all newly acquired entities and platforms.
• Protect our people, data, and operations by embedding a strong security culture aligned with our values: "Think (cyber)Safe, Work Safe, Home Safe."
• Strengthen stakeholder, customer & client confidence by proactively managing security engagements, responding to tender security requirements, and interfacing with client security and data protection teams.
• Mitigate evolving cyber risks by supporting the other security teams (Internal and Partner, ie PWC) in enhancing threat detection, vendor security oversight, and incident response capabilities across our growing business.

Skills and Experience

• ISO 27001 Lead Implementer & Lead Auditor – Proven expertise in managing and auditing ISMS frameworks.
  • Security Operations & Monitoring – Hands-on experience with Microsoft XDR, SIEM platforms, and threat detection technologies.
  • Penetration Testing & SOC Operations – Strong understanding of offensive security techniques and Security Operations Centre (SOC) functions.
  • Network Security & Architecture – Experience with firewalls, intrusion detection/prevention systems (IDS/IPS), and secure network design.
  • Governance, Risk & Compliance (GRC) – Deep knowledge of security governance, risk assessment methodologies, and compliance frameworks.
  • Vendor & Third-Party Security Management – Experience in conducting vendor security assessments and supply chain risk management.

What We Value

We value our commitment to each other, summed up in our five values, we all sign up to these… We care about safety. We lead with integrity. We strive to be better every day. We make a positive impact. We deliver to grow. We are one company united.

Our Aim & Vision at OCU

To be the UK's leading energy transition and utilities contractor.

We are committed to leading the way in utilities and energy transition contracting, our mission is to innovate and deliver sustainability. At OCU, our passion for addressing complex challenges brings new standards of growth in our people and capabilities.

Company Information

Established in 1994, OCU Group is one of the fastest growing utility engineering contractors in the UK, with a long successful track record in delivering customer-focused civil engineering solutions.

Working directly with many of the country’s leading blue-chip power, water, telecoms, and rail clients, we are looking for the very best talent to join our growing team.

We pride ourselves on empowering our employees and offering opportunities for them to take control of their own personal development and career progression in a supportive environment.

We believe that being successful is a choice.

We choose to be successful.

We are OCU, ‘One Company United.’

We celebrate difference and appreciate diverse backgrounds. We encourage everyone who join us to be themselves at work and create inclusive teams in our workplace.