Information Security Team Lead in London

Shape, lead, and own enterprise security for a highly respected insurance platform operating at the heart of the London Market. We’re partnering with a market‑leading insurance client as they continue to invest heavily in technology transformation and client services who are now looking to hire an Information Security Technical Lead to take full ownership of their end‑to‑end security function. This is a hands‑on leadership role where you will define strategy, lead a team, and actively engineer and improve security controls across a complex, multi‑tenant environment.

The Opportunity

This is not a governance‑heavy or purely advisory position. You will:

• Own and deliver the security roadmap across internal platforms and a broad client estate
• Lead and mentor a team of security engineers (currently 3)
• Act as the senior escalation point for security incidents and decision‑making
• Work across a modern Microsoft/Azure environment, driving improvements in M365 security and identity
• Influence how security is delivered across our sites, combining internal and client‑facing services

You’ll sit at the centre of infrastructure, operations, and client engagement—combining engineering depth with commercial and stakeholder impact.

What You’ll Be Doing

Security Leadership & Programme Ownership

• Define and execute the enterprise‑wide security strategy
• Own capabilities across PAM, SIEM, EDR/XDR, DLP, vulnerability management, identity governance
• Translate regulatory obligations (FCA, PRA, ISO 27001, Lloyd’s) into practical, measurable controls

Hands‑On Security Engineering

• Implement and optimise controls across Azure, M365, and infrastructure environments
• Lead hardening initiatives across IAM, PAM, AD, and network security
• Drive security automation and DevSecOps practices

Incident Response & Threat Detection

• Lead real‑time response to security incidents
• Oversee SIEM/SOAR integration, alerting, and playbooks
• Conduct investigations using log analysis, forensic techniques, and threat intelligence

Client‑Facing Security Services

• Provide advisory and managed security support to a portfolio of insurance clients
• Deliver security reviews, maturity assessments, and improvement plans
• Act as a trusted advisor on risk, controls, and security architecture

Vulnerability & Risk Management

• Own scanning, assessment, and remediation across platforms
• Partner with engineering teams to prioritise and reduce risk exposure
• Drive continuous improvement in security posture and resilience

What We’re Looking For

• 7 years in cybersecurity, with 3–4 years in a lead/principal capacity
• Experience spanning security engineering, SOC / incident response
• Strong expertise across: SIEM (Sentinel, Splunk, LogRhythm), EDR/XDR (Defender, CrowdStrike, SentinelOne), IAM / PAM / identity security, Vulnerability tooling (Tenable, Pentera, etc.)
• Hands‑on experience across Azure and Microsoft security stack
• Scripting/automation capability (PowerShell, Python, Bash)
• Strong grounding in MITRE ATT&CK, OWASP, and modern threat vectors
• Background in insurance, financial services, or regulated environments is highly beneficial

If you are looking for:

• End‑to‑end ownership of InfoSec across internal client environments
• Hands‑on leadership – build, improve, and lead in equal measure
• Client exposure – influence security across multiple insurance businesses
• Strong investment in tooling, automation, and cloud transformation
• Prime City location with excellent transport links.

If you're a technical security leader who still enjoys being close to the technology, and you want a role where you can shape strategy, lead a team, and make real impact, this is a standout opportunity. Apply now for immediate consideration and a confidential discussion.