Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber and information security strategy, ensuring compliance and supporting rapid growth.
- Company: PE-backed lettings and property management business with a dynamic growth trajectory.
- Benefits: Competitive salary, flexible working, and opportunities for professional development.
- Why this job: Make a real impact in a fast-paced environment while shaping security governance.
- Qualifications: Proven experience in security framework implementation and influencing stakeholders.
- Other info: Work in central London with quarterly branch visits across the UK.
The predicted salary is between 72000 - 108000 £ per year.
Our client is a PE-backed UK lettings and property management business managing 70,000+ properties through 2,500+ employees across 160+ branches. Since 2021, they have completed 80+ acquisitions with continued growth planned. Recent independent security assessments confirm they have solid foundational controls but need structured governance, clearer accountability, and systematic improvement to meet board and investor expectations whilst supporting aggressive growth.
Reporting to the CTO, they need a Cyber and Information Security Lead who can build and maintain an appropriate security posture; one that meets legal and regulatory requirements, satisfies board and investor expectations, and enables (not blocks) their fast-paced, acquisition-led growth. This is a single point of accountability for both cyber security and information security at a strategy, policy, and programme level. You’d set the direction, define what needs to happen, and drive it through existing teams rather than building a security department. Implementation is executed by their MSP, the IT Services team, and the product and data teams who own their own domains and will need to be secure by design.
They want someone who views security through a commercial risk lens. Someone who can explain the business impact of a risk in language the board and business understands, prioritise based on what actually matters to the organisation, and resist the temptation to.
Time allocation: 30% strategy & governance, 40% hands-on policy and risk work, 30% influencing others
Working patterns: 4 days per week in the office (central London) with quarterly branch visits across the UK.
Required skills & experience:
- Must Have
- Security framework implementation: Proven experience implementing structured security controls (ISO 27001, NIST, Cyber Essentials Plus, or equivalent) from gap analysis through to operational maturity in 1,000+ employee organisations
- Scale: Experience securing 2,000+ employees across multiple physical locations with distributed operating models
- Collaboration: Track record of influencing without authority; translating technical risks into business language that boards and investors understand
- Microsoft Security: Practical knowledge of M365 security capabilities (Defender, Sentinel, Entra ID, Conditional Access, Purview)
- Data protection: Solid understanding of UK GDPR including DPIAs, data subject rights, and marketing consent
- Orchestration mindset: Comfortable being the single accountable person for security, driving outcomes through an MSP, internal IT teams, and product teams rather than building your own department
Nice to Have
- Hands-on technical security skills (tool configuration, scripting, application security)
- PE-backed business experience; familiarity with investor due diligence expectations
- Property/service industry or CRM-centric business model understanding
Cyber and Information Security Lead (High growth, M&A, PE-environment) employer: Ethos BeathChapman
Contact Detail:
Ethos BeathChapman Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber and Information Security Lead (High growth, M&A, PE-environment)
✨Tip Number 1
Network like a pro! Get out there and connect with people in the industry. Attend events, join online forums, and don’t be shy about reaching out on LinkedIn. We all know that sometimes it’s not just what you know, but who you know that can land you that dream job.
✨Tip Number 2
Prepare for those interviews! Research the company inside out, especially their recent acquisitions and growth plans. We want you to be able to discuss how your skills can help them meet their security goals while supporting their aggressive growth. Show them you’re the perfect fit!
✨Tip Number 3
Practice your pitch! You need to be able to explain complex security concepts in simple terms. We suggest rehearsing how you’d communicate risks and solutions to a board or investor. Make it relatable and relevant to their business objectives.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive and engaged. Let’s get you that Cyber and Information Security Lead role!
We think you need these skills to ace Cyber and Information Security Lead (High growth, M&A, PE-environment)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the job description. Highlight your experience with security frameworks like ISO 27001 or NIST, and don’t forget to mention any hands-on technical skills you have. We want to see how your background aligns with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for the Cyber and Information Security Lead role. Share specific examples of how you've influenced teams and communicated risks in business terms. We love a good story!
Showcase Your Collaboration Skills: Since this role involves influencing without authority, make sure to highlight your collaboration experiences. Talk about times when you’ve worked with different teams to achieve security goals. We’re all about teamwork here at StudySmarter!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, we love seeing applications come in directly from our site!
How to prepare for a job interview at Ethos BeathChapman
✨Know Your Security Frameworks
Make sure you’re well-versed in security frameworks like ISO 27001 and NIST. Be ready to discuss your experience implementing these controls, especially in large organisations. Highlight specific examples where you've taken a framework from gap analysis to operational maturity.
✨Speak Their Language
Since you'll be influencing boards and investors, practice translating technical risks into business terms. Prepare to explain the business impact of security risks clearly and concisely. Use relatable examples that demonstrate how security can enable growth rather than hinder it.
✨Show Your Collaborative Spirit
This role requires working with various teams without direct authority. Think of instances where you've successfully influenced others to adopt security measures. Be ready to share how you’ve collaborated with IT, product, and data teams to drive security outcomes.
✨Demonstrate Your Orchestration Mindset
Emphasise your ability to be the single point of accountability for security. Discuss how you’ve managed security initiatives through external service providers and internal teams. Show that you understand the importance of driving outcomes without building a separate security department.