Head of Cyber Security

Join to apply for the Head of Cyber Security role at Commercial Services Group

Get AI-powered advice on this job and more exclusive features.

Commercial Services Group provided pay range

This range is provided by Commercial Services Group. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

Direct message the job poster from Commercial Services Group

Location: Hybrid working, Kings Hill base with travel to other sites as required

Contract type: Permanent

Hours: Full time, 37 hours per week

We are looking for an experienced and forward-thinking cyber security leader to join our Corporate Services division as Head of Cyber Security. This is a senior strategic role with organisation-wide visibility and impact. If you have the vision, expertise and influence to embed robust cyber security across a complex and fast-growing business, we want to hear from you.

Who we are

Commercial Services Group is one of the UK’s largest local authority-owned trading organisations, comprising 33 diverse businesses that operate across education, local government, the NHS and beyond. We provide services in recruitment, energy, procurement, legal, IT, HR, education supplies, facilities management and more. With more than 1,800 employees and a global footprint, we combine commercial excellence with social impact, reinvesting a significant proportion of our profits into public services.

Corporate Services underpins the success of all Commercial Services Group trading divisions by providing the infrastructure, expertise and governance needed to enable growth, innovation and resilience. The Cyber Security function sits within Corporate IT and plays a central role in protecting the Group’s digital assets, data and reputation.

Why this role matters

As Head of Cyber Security, you will be responsible for shaping and delivering CSG’s cyber security vision and strategy. You will lead the development and continual improvement of a Group-wide security programme, ensuring that our digital infrastructure, applications and data are secure, compliant and resilient. This is a strategic leadership role that also holds operational oversight and will act as the organisation’s Chief Information Security Officer (CISO).

What you’ll be doing

• Provide strategic leadership for the Group’s cyber security vision, strategy and programme
• Collaborate closely with the Cyber Operations team and wider IT colleagues to align strategy, governance and operational security activities
• Monitor and improve the organisation’s information security posture, ensuring initiatives are aligned to business goals
• Oversee the Information Security Management System (ISMS) and maintain compliance with relevant standards including ISO 27001, NIST-CSF and Cyber Essentials Plus
• Lead on policies, controls and risk mitigation in collaboration with technical and operational teams
• Provide assurance over incident response capabilities and governance, ensuring effective escalation procedures
• Ensure compliance with all relevant regulatory requirements such as GDPR, NIS and the UK Data Protection Act
• Act as the accountable officer for information security across CSG
• Report regularly to the Executive Board and Audit & Risk Committee on strategic security matters
• Promote a strong culture of cyber security awareness through training and internal engagement
• Act as a key liaison for auditors, regulators and law enforcement
• Maintain alignment with Kent County Council’s CISO on governance and assurance

What we’re looking for

• Significant experience leading cyber security strategy and governance in a complex, multi-entity organisation
• Professional certification such as CISM, CISSP or CISA
• Hands-on experience managing ISMS and compliance with frameworks such as ISO 27001, NIST, CIS-20CSC and Cyber Essentials
• Strong understanding of security legislation and regulatory requirements, including GDPR and PCIDSS
• Confident presenting to Executive Boards, Audit Committees and external stakeholders
• A collaborative and credible leader, able to influence technical and non-technical audiences
• Experience working at a senior level within IT infrastructure and cyber architecture
• Comfortable operating across operational and strategic levels with matrix leadership responsibilities

What you’ll get in return

• Salary of £100,000–£110,000 per annum
• 25 days annual leave increasing with service, plus your birthday off
• Life assurance cover (4x salary)
• Pension scheme with 6 percent employer contribution
• Additional benefits including retail and gym discounts, wellbeing programme and cycle to work scheme
• Volunteer days and access to a wide range of learning and development opportunities
• A collaborative and ambitious working environment with real purpose

Key Details

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Business Consulting and Services

Inclusion & Accessibility

We are committed to fostering a diverse and inclusive workplace where everyone feels valued and respected. We encourage applications from suitably qualified people of all backgrounds.

We are committed to providing reasonable adjustments throughout our application and interview process; please let us know if you require any.

Get notified about new Head of Cyber Security jobs in Kings Hill, England, United Kingdom.