Head of Information Security

Location: London

Hours: 35 hours per week Monday to Friday

We are looking for a highly experienced and strategic Head of Information Security to lead and shape the organisation's security posture across IT Security, Cyber Security, and Information Security functions. You have a deep understanding of technical and governance-based security practices, with the ability to balance operational resilience, risk management, and business enablement. In this role which reports to our Chief Information Officer, you will drive the overall security strategy, ensuring that security controls, policies, and technologies effectively protect the organisation's assets, infrastructure, and data. You will work closely with senior leadership, providing expert guidance on threat mitigation and security best practices. If you thrive in a dynamic environment and have a passion for building and evolving enterprise security programs, we want to hear from you.

Main Responsibilities

• Define, implement, and oversee technical security controls across the organisation's Microsoft and Azure-based infrastructure, ensuring robust protection against cyber threats.
• Lead vulnerability management and remediation efforts, ensuring timely identification and mitigation of risks across cloud and on-premises environments.
• Enhance and manage security monitoring, detection, and response capabilities using Microsoft security tools such as Microsoft Defender, Sentinel, and Entra ID security features.
• Drive the security architecture and engineering strategy, ensuring secure design principles are embedded across cloud and hybrid infrastructure.
• Oversee identity and access management (IAM), enforcing least privilege principles and securing authentication processes across Microsoft platforms.
• Coordinate and lead incident response activities, working with internal teams and third-party providers to contain and remediate security breaches.
• Ensure endpoint security for end-user devices, virtual desktops, and cloud-based services, leveraging Microsoft Defender for Endpoint and other relevant tools.
• Support M&A security assessments and integrations, ensuring due diligence and risk mitigation for acquired environments.
• Maintain an understanding of evolving cyber threats and proactively adapt security measures to stay ahead of emerging risks.
• Provide oversight of governance and compliance requirements, ensuring security policies and regulatory obligations (e.g., ISO 27001, NIST, CIS benchmarks) are met.

About You

• At least five years' experience in cyber security leadership roles, with a strong focus on technical security operations and architecture.
• Proven track record of securing Microsoft and Azure-based environments, including cloud, hybrid, and on-premises infrastructure.
• Hands-on experience in managing and responding to security incidents, threat hunting, and vulnerability remediation.
• Strong background in implementing and overseeing security monitoring and detection capabilities using SIEM, EDR, and XDR solutions.
• Experience leading security initiatives in complex enterprise environments, including M&A integrations and security due diligence.
• Familiarity with security frameworks and compliance standards such as ISO 27001, NIST, CIS benchmarks, and Microsoft Security Best Practices.
• Strong stakeholder engagement experience, with the ability to communicate technical security risks and strategies to senior leadership and technical teams.

Technical Skills

• Relevant certifications such as CISSP, CISM, Security Blue Team, Microsoft Certified: Azure Security Engineer Associate AZ-500, Microsoft Certified: Security Operations Analyst Associate SC-200, and Microsoft Certified: Cybersecurity Architect Expert SC-100 are highly desirable.
• Expertise in Microsoft security solutions, including Microsoft Defender (Endpoint, Identity, Cloud), Microsoft Sentinel (SIEM), Entra ID Security Features, and Microsoft Purview.
• Strong knowledge of Azure security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security.
• Deep understanding of identity and access management (IAM), MFA, and privileged access security in Microsoft environments.
• Hands-on experience with vulnerability management tools, security patching, and hardening of cloud and on-premises systems.
• Proficiency in security automation, scripting, and Infrastructure-as-Code (IaC) using PowerShell, Azure Policy, Azure Automation Accounts, and Logic App workflows.
• Experience with network security principles, including zero-trust architecture, segmentation, firewalls, and secure remote access solutions.
• Strong understanding of cyber threat intelligence, MITRE ATT&CK framework, and advanced threat detection methodologies.

The Benefits

Our customers deserve the best and the same applies to our people. We'll support you with all of the technology, training and support that you need to do your job well. We offer competitive salaries and a range of benefit packages. In addition to the core benefits, we also offer a range of exclusive discounts on extra benefits to help you and your family make the most of your money, safeguard your future and look after your health.

Diversity

We're committed to promoting diversity at Emeria and recruit on merit. We will consider applications from job share applicants.

Ready to Apply?

Click the below apply button to start your application for this role. We will ask you to upload your CV and answer a few questions. If you meet the criteria for the role we'll be in touch to arrange a short telephone interview and our shortlist of candidates will be invited to attend interviews with the hiring manager and up to three other key stakeholders.