Head of IT Security

The Head of IT Security will report directly into the CIO. The Head of IT Security is a leadership role with responsibility for developing and implementing Marlowe Environmental Services (MES) overall information security strategy, ensuring critical data, applications and infrastructure are protected from cyber threats and maintaining compliance with regulations. The role requires expert knowledge in cyber security, IT policies and governance and IT risk management.

Requirements

Strategic Leadership & Planning

• Lead the IT Security team, promoting a high-performance, security-first culture.
• Define and execute the MES IT Security roadmap aligned with business goals.
• Drive security education and adoption across the business.
• Foster innovation by tracking emerging threats, trends, and tools.
• Ensure security best practices in network, system, and application design across MES.

Security Operations

• Oversee daily monitoring to detect and respond to security threats.
• Lead coordinated responses to security incidents and manage remediation.
• Deliver regular reports and KPIs on MES security posture.
• Develop and maintain security policies and ensure business-wide adoption.
• Implement a cybersecurity awareness and training program.

Compliance & Risk Management

• Continuously assess and mitigate cybersecurity risks and vulnerabilities.
• Support internal and external audits and assessments.
• Ensure compliance with regulations and industry standards across MES.

Other Responsibilities

• Build strong cross-functional relationships to champion information security.
• Maintain partnerships to stay current on best practices and threat landscapes.
• Conduct vulnerability scans and annual penetration testing.
• Contribute to the overall IT strategy.

Person Specification

Experience

• Proven Head of IT Security in dynamic environments with strategy development experience.
• 10+ years in IT Security roles, including people management.
• Successful track record implementing security-first cultures in 1500+ user environments.
• Experience with ISO27001, GDPR, HIPAA, and NIST frameworks.
• Strong technical background in IT systems and security tools.
• Skilled at building relationships across all organisational levels.

Skills & Competencies

• Strong leadership and technical team management.
• Expert in security tools, systems, and protocols.
• Clear communicator across technical and non-technical audiences.
• Solid knowledge of cloud technologies and tools.
• Deep understanding of IT infrastructure and security challenges.
• Strong analytical and problem-solving skills.

Qualifications

• Bachelor's degree in Computer Science, Electronic Engineering, or related field.
• Certified: CCISO, CISM, CISSP, CEH, CCSP, or equivalent.

Benefits

• Salary up to £90,000 per annum depending on experience
• Free parking
• Royal London Pension
• Mental Health & Well-being Scheme
• Employee Recognition Scheme
• Paid Recommend a Friend Scheme (up to £2000* for successful referrals)
• My Marlowe Rewards including access to a GP

If you're ready to join a winning team and advance your career, we'd love to hear from you!

Built on Sustainability, Trust, Accountability, Respect, Safety