Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security strategy and ensure robust protection for our innovative healthcare platforms.
- Company: Join a pioneering HealthTech start-up transforming ADHD care in the UK.
- Benefits: Competitive salary, 33 days holiday, hybrid work, and birthday off.
- Why this job: Make a real impact on accessible healthcare while shaping security practices.
- Qualifications: 5+ years in information security with strong leadership and technical skills.
- Other info: Be part of a diverse team committed to innovation and excellence.
The predicted salary is between 55000 - 65000 £ per year.
Location: Hybrid (Canary Wharf)
Join Us at The Centre for ADHD Research and Excellence: Shaping the Future of Accessible Healthcare. At CARE ADHD, we're revolutionising private healthcare by making ADHD assessments and treatment more affordable and accessible to those who need it. Our client-centred approach, combined with lean methodology and a focus on continuous improvement, drives our commitment to excellence. We embrace an innovative mindset, encouraging rapid learning and adaptation through our 'fail fast' ethos. With ambitious plans to become the largest ADHD service provider outside the NHS within the next five years, we are committed to pushing boundaries and fostering innovation.
Salary: £55,000 - £65,000
Reports to: CTO
Ideal Start: ASAP
What we are looking for:
We’re looking for an Information Security Lead, who will own security strategy, delivery, and operational assurance across internal products, platforms, and data systems. Reporting directly to the CTO, this role combines hands-on technical leadership with people management, working closely with engineering, product, and data teams to ensure systems are secure, resilient, and compliant by design. This is a senior, execution-focused role with real influence over architecture, product delivery, and data security decisions, rather than a purely policy- or audit-led position.
Responsibilities:
- Security Strategy & Leadership
- Define, own, and evolve the organisation’s information security strategy and roadmap.
- Partner with the CTO on security risk management, prioritisation, and investment decisions.
- Act as the primary security authority for internal platforms and products.
- Champion security-by-design and DevSecOps principles across engineering and data teams.
- Team Management
- Line-manage one security engineer, providing coaching, mentoring, and performance management.
- Support professional development, skills growth, and career progression.
- Build and promote a strong security culture across the wider technology organisation.
- Internal Product Testing & Support
- Own and continuously improve security testing practices for internal products and platforms.
- Embed security testing into QA and release pipelines, including:
- Static and dynamic application security testing (SAST/DAST)
- Dependency and supply-chain scanning
- Vulnerability and configuration assessments
- Partner with engineering teams to ensure internal tools and platforms meet defined security and operational standards prior to release.
- Act as a senior escalation point for security-related production issues.
- Lead root-cause analysis and remediation of security incidents impacting internal systems.
- Lead security design and governance for data platforms, including data pipelines, lakes, warehouses, and analytics tooling.
- Define and enforce data security controls, including:
- Data classification and handling standards
- Encryption at rest and in transit
- Identity and access management (IAM) and least-privilege access models
- Secure data sharing and API access
- Define and maintain security policies, standards, and procedures aligned with frameworks such as ISO 27001, NIST, and GDPR.
- Lead vulnerability management, threat modelling, and risk assessments.
- Own incident response processes and post-incident reviews.
- Prepare for internal and external audits and coordinate with third-party security partners where required.
- Track and report security risks, KPIs, and maturity metrics to senior leadership.
Essential:
- 5+ years’ experience in information security or cybersecurity roles.
- Experience operating in a senior or lead capacity.
- Proven experience managing or mentoring engineers.
- Strong knowledge of:
- Secure SDLC and DevSecOps practices
- Cloud security (AWS, Azure, or GCP)
- Identity and access management
- Data security and privacy principles
Desirable:
- Experience securing data platforms, analytics environments, or AI/ML workloads.
- Familiarity with SIEM, EDR, vulnerability management, and cloud security tooling.
- Experience preparing organisations for security or compliance audits.
- Relevant certifications (e.g. CISSP, CISM, CCSP, ISO 27001 Lead Implementer).
What You Can Expect From Us:
- Competitive salary of £55,000 - £65,000
- Work from our Canary Wharf office, or Hybrid with remote days in the UK.
- 33 days holiday (includes UK public holidays)
- Team get-togethers
- A paid day off on your birthday
- Office equipment when you join
- Pension contribution
- Be part of one of the UK’s most ambitious HealthTech start-ups
Our Hiring Process:
We aim to make our hiring process as streamlined as possible. All shortlisted candidates will be invited to a Talent Call with one of our Talent Acquisition Specialists, with successful candidates having a second stage interview and skills based assessment with our CTO.
Apply with Confidence:
Studies show that men apply for roles when they meet around 60% of the qualifications, whereas women and other marginalised groups often apply only if they meet every requirement. If you believe you’re a great fit but don’t meet every single requirement, we encourage you to apply!
At Care ADHD, we’re committed to building a diverse and inclusive environment. We encourage applications from candidates of all backgrounds, especially those from historically marginalised communities, as we work together to create a more equitable future.
Information Security Lead in London employer: Care ADHD
Contact Detail:
Care ADHD Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Lead in London
✨Tip Number 1
Network like a pro! Reach out to people in your industry on LinkedIn or at events. A friendly chat can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. Show them you’re not just another candidate; you’re genuinely interested in their mission and values.
✨Tip Number 3
Practice your pitch! Be ready to explain how your skills align with the role of Information Security Lead. Highlight your experience in security strategy and team management.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take that extra step!
We think you need these skills to ace Information Security Lead in London
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in information security. Use keywords from the job description to show that you understand what we're looking for.
Showcase Your Leadership Skills: Since this role involves team management, don’t forget to mention any experience you have in leading teams or mentoring others. We want to see how you can inspire and guide your colleagues!
Be Clear and Concise: When writing your application, keep it straightforward. Use bullet points where possible and avoid jargon. We appreciate clarity, so make it easy for us to see your qualifications.
Apply Through Our Website: We encourage you to submit your application directly through our website. It’s the best way to ensure it gets into the right hands and helps us streamline the process!
How to prepare for a job interview at Care ADHD
✨Know Your Stuff
Make sure you brush up on your knowledge of information security principles, especially around secure SDLC and DevSecOps practices. Be ready to discuss your experience with cloud security and data protection compliance, as these are crucial for the role.
✨Show Your Leadership Skills
Since this role involves team management, be prepared to share examples of how you've successfully led or mentored others in previous positions. Highlight your ability to foster a strong security culture and how you've supported professional development in your teams.
✨Prepare for Technical Questions
Expect technical questions that dive deep into security testing practices and incident response processes. Brush up on your knowledge of vulnerability management and threat modelling, and be ready to explain how you've implemented these in past roles.
✨Communicate Clearly
You'll need to communicate effectively with both technical and non-technical stakeholders. Practice explaining complex security concepts in simple terms, as this will demonstrate your ability to bridge the gap between different teams and ensure everyone is on the same page.
