At a Glance
- Tasks: Lead and shape the Information Security strategy while ensuring compliance and risk management.
- Company: Join a leading firm committed to innovative security solutions.
- Benefits: Enjoy hybrid working, competitive salary, and opportunities for professional growth.
- Other info: Collaborative culture with a focus on strategic and tactical operations.
- Why this job: Make a significant impact on security governance in a dynamic environment.
- Qualifications: 8-12+ years in Information Security with strong governance leadership experience.
The predicted salary is between 70000 - 90000 £ per year.
Roles & Responsibilities
- Strategic & Governance Leadership: Deputise for the Head of Information Security at ITLT, OpCom, RiskCom and Advisory Board as required. Define, maintain and mature the Information Security Strategy aligned to Technology Directorate and firm objectives. Establish governance mechanisms to ensure effective security oversight. Own annual review and update of Information Security Terms of Reference. Ensure security roles, responsibilities and training plans are defined and maintained.
- Regulatory & Policy Oversight: Own the Information Security Policy framework and supporting standards. Ensure mapping of regulatory and industry standards (e.g. GDPR, ISO 27001) to firm policies. Oversee annual policy attestation and compliance reporting. Lead audit readiness and regulatory engagement.
- Risk & Assurance: Ensure all information security risks are documented, escalated and managed appropriately. Oversee third-party security assessment programme (regulatory and client-driven). Provide executive-level reporting on security posture, risk exposure and compliance status. Maintain evidence framework demonstrating compliance and traceability.
- Financial & Resource Management: Support management of Information Security budget. Oversee business case development for security initiatives. Manage programme demand and prioritisation across the InfoSec portfolio.
- Other: Comply with all relevant legal and regulatory obligations including the Solicitors Regulation Authority (SRA) Standards and Regulations, and Principles.
Person Specification
- 8–12+ years in Information Security, with governance leadership experience.
- Strong knowledge of ISO 27001, GDPR, law firm or regulated professional services environment preferred.
- Experience presenting to executive committees.
- Strong commercial and financial awareness.
- Ability to operate at both strategic and tactical levels.
Hybrid Working: We adopt a hybrid and flexible working approach, dependent on the requirements of the role and subject to manager approval.
Information Security Lead in London employer: Charles Russell Speechlys
As an Information Security Lead, you will join a forward-thinking organisation that prioritises employee growth and development within a collaborative and inclusive work culture. With a strong commitment to maintaining a robust Information Security framework, the company offers competitive benefits, flexible hybrid working arrangements, and opportunities to engage with executive leadership, making it an ideal environment for professionals seeking meaningful and rewarding careers in a dynamic setting.
StudySmarter Expert Advice🤫
We think this is how you could land Information Security Lead in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the information security field and let them know you're on the lookout for opportunities. You never know who might have the inside scoop on a role that’s perfect for you.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of ISO 27001 and GDPR. Be ready to discuss how you've tackled security challenges in the past, as well as your approach to governance and risk management. Show them you’re the strategic leader they need!
✨Tip Number 3
Don’t just apply anywhere; focus on companies that align with your values and expertise. Use our website to find roles that match your skills in information security and governance. Tailor your approach to each company’s culture and objectives.
✨Tip Number 4
Follow up after interviews! A quick thank-you email can go a long way in keeping you top of mind. Mention something specific from your conversation to show your genuine interest in the role and the company.
We think you need these skills to ace Information Security Lead in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the specific skills and experiences that align with the Information Security Lead role. Highlight your governance leadership experience and knowledge of ISO 27001 and GDPR to catch our eye!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for the role, focusing on your strategic thinking and ability to operate at both tactical and executive levels. We love a good story!
Showcase Your Achievements:When detailing your past roles, don’t just list responsibilities—show us what you’ve achieved! Use metrics and examples to demonstrate how you've managed risks or improved security policies in previous positions.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Charles Russell Speechlys
✨Know Your Stuff
Make sure you brush up on your knowledge of ISO 27001 and GDPR, as these are key to the role. Be ready to discuss how you've applied these standards in previous positions, and think of specific examples that showcase your governance leadership experience.
✨Showcase Your Strategic Thinking
Prepare to talk about how you've defined and matured information security strategies in the past. Think about the governance mechanisms you've established and be ready to explain how they align with broader organisational objectives.
✨Be Ready for Executive Conversations
Since you'll be presenting to executive committees, practice articulating complex security concepts in a clear and concise manner. Use examples from your experience to demonstrate your ability to communicate effectively at all levels.
✨Understand Financial Management
Familiarise yourself with budget management and business case development for security initiatives. Be prepared to discuss how you've managed resources in previous roles and how you prioritised security demands across portfolios.
