Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security governance and compliance for a transformative health-tech platform.
- Company: Join an innovative health-tech company reshaping health engagement through software.
- Benefits: Competitive salary, opportunity to shape security strategy, and work in a purpose-driven environment.
- Why this job: Make a real impact in health tech while driving security excellence and compliance.
- Qualifications: Extensive experience in security roles, ISO 27001 audits, and strong AWS knowledge required.
- Other info: Ideal for those passionate about health tech and looking to lead in a dynamic field.
The predicted salary is between 68000 - 92000 £ per year.
NearTech have partnered with an innovative health-tech company who are using software to transform how people engage with health wellbeing. With a platform that fuses clinical credibility and digital accessibility, they’re reshaping perceptions — empowering individuals and expanding access in a way that’s genuinely changing lives. As they scale, they’re investing in security as a strategic priority — making this a career-defining opportunity to shape systems, lead audits, and futureproof compliance.
The Information Security Lead will drive end-to-end security governance, embed regulatory excellence into systems and practices, and lead compliance strategy across a pioneering digital health platform (key areas being Web, Cloud Infrastructure & AI).
The new InfoSec Lead will:
- Define and operationalise security & compliance across infrastructure and applications.
- Lead the roadmap to ISO 27001 certification and maintain regulatory readiness.
- Manage internal and external audits, including documentation and stakeholder preparation.
- Embed secure practices into the SDLC alongside engineering and product teams.
- Act as a key interface with customers on security queries and due diligence.
Experience needed:
- Extensive experience in security or compliance roles, ideally in regulated tech or healthcare.
- Proven experience leading ISO 27001 audits and managing UK GDPR requirements.
- Strong AWS knowledge and understanding of modern SaaS/cloud security tools.
- Familiarity with health tech standards, SaMD, or MHRA regulation is a bonus.
- Clear communication skills to liaise across legal, ops, and engineering.
If you’re interested in this InfoSec Lead opportunity and ready to have a real impact within a purpose-led health-tech company please apply with a copy of your CV ASAP!
Contact Detail:
NearTech Search Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Information Security
✨Tip Number 1
Network with professionals in the health-tech and information security sectors. Attend industry events, webinars, or meetups to connect with people who can provide insights into the company culture and expectations for the Head of Information Security role.
✨Tip Number 2
Familiarise yourself with the latest trends and regulations in health tech, particularly around ISO 27001 and UK GDPR. Being well-versed in these areas will not only boost your confidence but also demonstrate your commitment to the role during discussions.
✨Tip Number 3
Prepare to discuss your previous experiences with audits and compliance strategies in detail. Think of specific examples where you successfully led initiatives or overcame challenges, as this will showcase your expertise and problem-solving skills.
✨Tip Number 4
Research the company's platform and its approach to digital health. Understanding their mission and how they integrate security into their services will allow you to tailor your conversations and show that you're genuinely interested in contributing to their goals.
We think you need these skills to ace Head of Information Security
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your extensive experience in security or compliance roles, particularly in regulated tech or healthcare. Emphasise your proven track record with ISO 27001 audits and UK GDPR requirements.
Craft a Compelling Cover Letter: In your cover letter, express your passion for health-tech and how your skills align with the company's mission. Mention specific experiences that demonstrate your ability to lead security governance and compliance strategy.
Highlight Relevant Skills: Clearly outline your strong AWS knowledge and familiarity with modern SaaS/cloud security tools. If you have experience with health tech standards or regulations like SaMD or MHRA, be sure to include that as well.
Showcase Communication Skills: Since clear communication is essential for this role, provide examples of how you've successfully liaised with different teams, such as legal, ops, and engineering, to address security queries and due diligence.
How to prepare for a job interview at NearTech Search
✨Showcase Your Security Expertise
Make sure to highlight your extensive experience in security and compliance roles, especially in regulated tech or healthcare. Be prepared to discuss specific projects where you led ISO 27001 audits or managed UK GDPR requirements.
✨Demonstrate Your Knowledge of AWS and Cloud Security
Since strong AWS knowledge is crucial for this role, brush up on your understanding of modern SaaS/cloud security tools. Be ready to explain how you've implemented security measures in cloud environments in your previous positions.
✨Prepare for Technical Questions
Expect technical questions related to security governance, compliance strategies, and the SDLC. Prepare examples of how you've embedded secure practices into development processes and how you’ve managed audits effectively.
✨Communicate Clearly and Confidently
Clear communication skills are essential for liaising with various teams. Practice articulating complex security concepts in a straightforward manner, as you'll need to interact with legal, ops, and engineering teams during your tenure.
