Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead SLC's cybersecurity strategy and ensure compliance while engaging with key stakeholders.
- Company: Join the Student Loans Company, a government-owned organisation dedicated to supporting students' futures.
- Benefits: Enjoy 28 days annual leave, flexible working, and a generous pension scheme.
- Why this job: Make a real impact in cybersecurity and drive innovation within a supportive team culture.
- Qualifications: Bachelor's or Master's in relevant fields plus security certifications and senior-level experience required.
- Other info: Blended working model with 2 days in the office and 3 days from home.
The predicted salary is between 71500 - 82132 £ per year.
Salary: £71,500 - £82,132 per annum + allowance in the range of £4,500-£9,000 per annum (paid in monthly instalments, non-pensionable)
Type: Permanent
Location: Glasgow / Darlington / Llandudno
Pension: 28.97% employer contribution
Closing Date: 6th July 2025 23:59
N.B. Please note that due to annual leave you might not hear back from us until W/C 14th July.
Student Loans Company is a non-profit making Government-owned organisation to provide loans and grants to students in universities and colleges in the UK. Since 1989, we have enabled our customers to invest in their futures by delivering secure, accurate and efficient assessment, payment and repayment services.
We have an exciting new opportunity (as part of a new department within our Cyber Security team) for a Head of Security Governance to join us here at the Technology Group in SLC. In this role you will be the driving force behind SLC's cybersecurity strategy, meeting compliance obligations and engaging with key external stakeholders (e.g. Government Security Group, GDS and NCSC). You will help shape the security culture, align security with the technology strategy and business objectives, and provide clear and actionable advice to colleagues across SLC to ensure colleague and customer information remain safe. You will also deputise for our CISO when required.
Join us in this transformational role where you will have the opportunity to make a real impact, drive innovation in our security posture, and build a resilient cybersecurity foundation that will protect and enable SLC's future growth.
SLC offer a blended working model which will typically be 2 days in the office and 3 days from home.
What you bring:
- Bachelor's or Master's degree in computer science, information systems, cybersecurity, or related field (or equivalent practical experience), plus relevant security certifications such as CISSP, CISM, or CRISC.
- Proven track record at senior level leading and managing cybersecurity team, including recruiting, training, and supervising staff with demonstrated ability to build and develop high-performing security organisations.
- In-depth understanding of government and/or industry cybersecurity frameworks (at least one of the following: NCSC CAF, PCI DSS, NIST, CIS) combined with very good technology and security knowledge, including system architecture understanding with potential specialisation in specific areas.
- Experience developing long-term security strategies that align with business objectives, coupled with expertise in conducting comprehensive risk assessments and developing effective mitigation strategies.
- Proficiency in security incident handling and crisis management, with very good awareness of evolving cybersecurity threats, trends, and emerging attack vectors.
- Demonstrated experience in developing, implementing, and managing security policies and procedures while ensuring adherence to regulatory requirements and industry standards.
- Excellent verbal and written communication skills to effectively convey security policies and procedures to all organisational levels, with ability to work collaboratively across departments and with external partners.
Benefits:
- 28 days annual leave plus 8 public holidays.
- Option to buy/sell annual leave.
- Flexi-time and enhanced flexible working options available.
- Option to join the Civil Service pension scheme.
- Life insurance cover for 4 x annual salary.
- Enhanced company sick pay and family leave including maternity, paternity and adoption.
- Contributory lifestyle benefit options including discounts at hundreds of retailers, cycle to work scheme, access to the Civil Service Sports and Leisure Club for discounted gym memberships, and an optional dental insurance scheme.
EDI Commitment:
SLC are committed to ensuring our recruitment processes are inclusive for all candidates and will make reasonable adjustments for those who consider themselves to have a disability or long-term condition in line with the Equality Act 2010. Our application process provides candidates with the opportunity to request reasonable adjustments but if you would like to discuss this in more detail, please email ask_recruitment@slc.co.uk.
Head of Security Governance employer: Student Loans Company
Contact Detail:
Student Loans Company Recruiting Team
ask_recruitment@slc.co.uk
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Security Governance
✨Tip Number 1
Familiarise yourself with the specific cybersecurity frameworks mentioned in the job description, such as NCSC CAF and PCI DSS. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and alignment with the role.
✨Tip Number 2
Prepare examples of your previous experience in leading cybersecurity teams and developing long-term security strategies. Highlighting your leadership skills and successful projects will show that you can drive innovation and build a resilient security foundation.
✨Tip Number 3
Engage with current trends in cybersecurity and be ready to discuss emerging threats and attack vectors. This knowledge will not only impress your interviewers but also showcase your commitment to staying updated in the field.
✨Tip Number 4
Network with professionals in the cybersecurity field, especially those who have experience with government organisations. Building connections can provide valuable insights and potentially lead to referrals for the position.
We think you need these skills to ace Head of Security Governance
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity governance and leadership. Emphasise your qualifications, such as degrees and certifications like CISSP or CISM, and showcase your track record in managing teams and developing security strategies.
Craft a Compelling Cover Letter: Write a cover letter that clearly outlines your motivation for applying to the Head of Security Governance position. Discuss how your skills align with the job requirements and how you can contribute to SLC's cybersecurity strategy and culture.
Highlight Relevant Experience: In your application, focus on specific examples of your past work that demonstrate your ability to lead cybersecurity initiatives, manage risks, and develop policies. Use metrics where possible to quantify your achievements.
Proofread Your Application: Before submitting, carefully proofread your CV and cover letter for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial in a security governance role.
How to prepare for a job interview at Student Loans Company
✨Understand the Cybersecurity Landscape
Familiarise yourself with current cybersecurity trends and frameworks relevant to the role, such as NCSC CAF or PCI DSS. Being able to discuss these in detail will demonstrate your expertise and commitment to the field.
✨Showcase Leadership Experience
Prepare examples of your previous leadership roles, particularly in managing cybersecurity teams. Highlight your experience in recruiting, training, and developing high-performing teams to illustrate your capability to lead effectively.
✨Communicate Clearly
Practice articulating complex security concepts in simple terms. The ability to convey security policies and procedures clearly to various stakeholders is crucial, so ensure you can communicate effectively at all organisational levels.
✨Align Security with Business Objectives
Be ready to discuss how you have previously developed long-term security strategies that align with business goals. This shows that you understand the importance of integrating security into the overall business strategy.
