Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead IT security compliance and GRC strategy for a FTSE 100 organisation.
- Company: Join a leading company focused on security, compliance, and risk maturity.
- Benefits: Competitive salary, senior leadership role, and high influence in strategic decisions.
- Why this job: Make a tangible impact in a complex enterprise environment with a strong security culture.
- Qualifications: Significant experience in IT security and governance, with excellent communication skills.
- Other info: Work in a dynamic environment with opportunities for professional growth.
The predicted salary is between 43200 - 72000 £ per year.
I've partnered with a FTSE 100 organisation in their search for a Head of Cyber (GRC). This is a brand new role, and it plays a big part of their continued focus on security, compliance, and risk maturity.
This is a senior role reporting directly to the CIO, with accountability for regulatory compliance, audit readiness, and embedding a strong security and risk culture across the organisation.
The role
You'll take ownership of IT security compliance and GRC strategy, ensuring alignment with business objectives and global regulatory requirements.
Key responsibilities include:
- Defining and leading the enterprise IT GRC strategy, aligned to ISO 27001 and wider regulatory frameworks
- Overseeing IT risk management across systems, operations, and third parties
- Ensuring compliance with GDPR, SOX, NIS2, ISO 27001 and managing internal/external audits
- Developing and maintaining security policies, procedures, tools, and processes
- Driving risk assessments across internal environments and the supply chain
- Promoting a strong culture of GRC awareness through training and stakeholder engagement
- Providing clear reporting to senior leadership and the board
- Leading and developing a team of direct reports
- Supporting critical incident and response activities when required
What we're looking for
- Significant experience in IT security, governance, risk and compliance, including senior leadership exposure
- Strong understanding of global regulatory requirements and industry standards (GDPR, ISO 27001, NIST, etc.)
- Experience operating in large, complex or highly regulated environments
- Excellent stakeholder management and communication skills
- Ability to balance strategic leadership with operational execution
West Midlands (3 days a week) High influence and strategic ownership.
If you're a GRC leader looking to make a tangible impact across a complex enterprise environment, please reach out to me with your CV.
Head of Information Security in Birmingham employer: James Adams
Contact Detail:
James Adams Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Information Security in Birmingham
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those who might know someone at the company you're eyeing. A friendly chat can sometimes lead to a referral, which is gold when it comes to landing that interview.
✨Tip Number 2
Prepare for the interview by researching the company’s recent projects and challenges. This shows you’re genuinely interested and ready to contribute to their goals, especially in areas like compliance and risk management.
✨Tip Number 3
Practice your pitch! Be ready to explain how your experience aligns with their needs, particularly around IT security and GRC strategy. We want to hear how you can make a real impact in their organisation.
✨Tip Number 4
Don’t forget to follow up after your interview! A quick thank-you email reiterating your enthusiasm for the role can keep you top of mind. And remember, applying through our website gives you a better chance to stand out!
We think you need these skills to ace Head of Information Security in Birmingham
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the specific skills and experiences that align with the Head of Information Security role. Highlight your experience in IT security, governance, risk, and compliance to catch our eye!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role and how your background aligns with our focus on security, compliance, and risk maturity.
Showcase Your Leadership Skills: Since this is a senior role, don’t forget to highlight your leadership experience. Share examples of how you've led teams or initiatives in IT security and GRC to demonstrate your capability.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity!
How to prepare for a job interview at James Adams
✨Know Your Regulations
Make sure you brush up on key regulations like GDPR, ISO 27001, and NIST. Being able to discuss these frameworks confidently will show that you understand the compliance landscape and can lead the GRC strategy effectively.
✨Showcase Your Leadership Skills
Prepare examples of how you've led teams in previous roles, especially in complex environments. Highlight your experience in stakeholder management and how you've driven a culture of security awareness within an organisation.
✨Be Ready for Scenario Questions
Expect questions that ask how you would handle specific risk management scenarios or compliance challenges. Think through potential situations beforehand and be ready to articulate your thought process and decision-making.
✨Engage with the Interviewers
Don’t just answer questions; engage with your interviewers. Ask insightful questions about their current GRC challenges and how they envision the role contributing to their objectives. This shows your genuine interest and strategic thinking.
