Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and enhance our information security programme while collaborating with various teams.
- Company: Join a forward-thinking company focused on cloud-native security solutions.
- Benefits: Enjoy hybrid working, generous leave, and a £1,000 learning budget.
- Why this job: Make a real impact in cybersecurity and shape the future of secure tech.
- Qualifications: Proven experience in security leadership and strong AWS knowledge required.
- Other info: Dynamic role with excellent growth opportunities and a supportive culture.
The predicted salary is between 48000 - 84000 £ per year.
Overview
The Impact You Will Have:
- Lead the day-to-day operation and uplift of Elliptic's information and cyber security programme.
- Drive SSDLC v2.0 adoption, improve cloud and SaaS security posture, and ensure external audit and customer due diligence readiness.
- Partner with Engineering, Platform, Legal, Procurement and Customer teams to reduce risk while enabling delivery and revenue, including Enterprise Tier security features.
What We Expect From You
- Programme ownership and delivery
- Own delivery of the InfoSec roadmap and metrics.
- Translate strategy into quarterly plans with measurable outcomes.
- Establish gates, controls and reporting for SSDLC v2.0 across build and deploy pipelines.
- Lead CSPM/SSPM baselining and targeted burn-down of misconfigurations and vulnerabilities.
- Maintain ISMS processes aligned to ISO 27001.
- Coordinate evidence for customer audits and external assurance (e.g., pen test, TPOs).
- Chair or contribute to risk forums.
- Ensure timely remediation, risk acceptance and exception tracking.
- Partner with Platform to harden AWS (IAM, KMS, network segmentation, Security Hub, GuardDuty, logging).
- Uplift endpoint, identity and access, vulnerability management, and logging across the estate.
- Provide day-to-day guidance to TISO, Analysts and cross-functional contributors.
- Embed a pragmatic, developer-friendly security culture through enablement, playbooks and training.
- Oversee vendor security due diligence with clear SLAs and evidence trails.
- Support data protection and BC/DR control owners.
You Must Have
- Proven experience leading security delivery in a cloud-native product company.
- Strong understanding of AWS security architecture, modern CI/CD, and application security practices.
- Experience operationalising ISMS controls and preparing audit evidence for enterprise customers.
- Excellent stakeholder management and communication skills.
- Relevant certifications are a plus (e.g., CISSP, CCSP, AWS Security), but practical impact matters most.
Success Measures In The First 12 Months
- SSDLC v2.0 gates defined and enforced across critical services. Coverage reported monthly.
- 40% reduction in outstanding high/critical vulnerabilities and misconfigurations.
- Green audit outcomes for priority customers with evidence pack library established.
- Baseline CSPM/SSPM metrics in place with trend improvement quarter-on-quarter.
- Vendor DD process with SLAs and scorecards operating and measured.
How We Work
- Hybrid working and the option to work from almost anywhere for up to 90 days per year.
- £500 Remote working budget to set up your home office space.
- Learning & Development $1,000 Learning & Development budget to use on anything (agreed with your manager) that contributes to your growth and development.
- Holidays: 25 days of annual leave + bank holidays.
- An extra day for your birthday.
- Enhanced parental leave: we provide eligible employees, regardless of gender or whether they become a parent by birth or adoption, 16 weeks fully-paid leave.
- Benefits: Private Health Insurance - we use Vitality!
- Full access to Spill Mental Health Support.
- Life Assurance: 4 times your salary to your beneficiaries.
- £100 cryptocurrency for you!
- Cycle to Work Scheme.
Information Security Team Lead in London employer: Elliptic
Contact Detail:
Elliptic Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Team Lead in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for those interviews by researching the company and its culture. Understand their security challenges and think about how your experience aligns with their needs. We want to see you shine!
✨Tip Number 3
Showcase your skills through practical examples. Be ready to discuss specific projects where you've led security initiatives or improved processes. This is your chance to demonstrate your impact!
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who are proactive about joining our team.
We think you need these skills to ace Information Security Team Lead in London
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in leading security delivery, especially in cloud-native environments. We want to see how your skills align with our needs, so don’t hold back on showcasing relevant projects!
Showcase Your Achievements: When detailing your past roles, focus on measurable outcomes. Did you reduce vulnerabilities or improve security posture? Use numbers and specific examples to demonstrate your impact – it really helps us see your potential!
Be Clear and Concise: Keep your application straightforward and to the point. We appreciate clarity, so avoid jargon unless it’s necessary. Make it easy for us to understand your qualifications and how they relate to the role.
Apply Through Our Website: We encourage you to submit your application through our website. It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Elliptic
✨Know Your Stuff
Make sure you brush up on your knowledge of AWS security architecture and modern CI/CD practices. Be ready to discuss how you've operationalised ISMS controls in the past and prepared audit evidence for enterprise customers. This will show that you’re not just familiar with the concepts, but that you can apply them effectively.
✨Showcase Your Leadership Skills
As a potential Information Security Team Lead, it’s crucial to demonstrate your people leadership abilities. Prepare examples of how you've guided teams in the past, embedded a security culture, or contributed to cross-functional projects. Highlighting your experience in mentoring and enabling others will resonate well with the interviewers.
✨Prepare for Stakeholder Management Questions
Expect questions about how you manage relationships with various stakeholders, such as Engineering, Legal, and Procurement teams. Think of specific instances where you successfully collaborated to reduce risk while enabling delivery. This will showcase your communication skills and ability to navigate complex environments.
✨Metrics Matter
Be ready to discuss how you would define and enforce SSDLC v2.0 gates across critical services. Have a clear understanding of what success looks like in terms of metrics, such as reducing vulnerabilities and improving audit outcomes. This shows that you’re results-oriented and can translate strategy into measurable outcomes.
