Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber security initiatives and protect digital assets from emerging threats.
- Company: Join a forward-thinking organisation committed to making a difference.
- Benefits: Flexible working options, competitive salary, and opportunities for professional growth.
- Why this job: Be the key player in shaping our cyber security strategy and making a real impact.
- Qualifications: Proven experience in cyber security frameworks and strong analytical skills.
- Other info: Embrace a dynamic work environment with a focus on trust and collaboration.
The predicted salary is between 43200 - 72000 Β£ per year.
Permanent, Full Time (35 hours per week). We're looking for a Cyber Security Lead to provide strategic leadership and organisation-wide direction for cyber security, setting security standards, influencing governance, and shaping long-term security strategy across JRF and JRHT.
About the role
You will be responsible for leading the delivery of the organisation's cyber security activities, ensuring that digital systems and information assets are protected against current and emerging threats. Maintaining the cyber risk register, you will lead investigations into security breaches, coordinate disaster recovery (DR) and cyber incident response, and support business continuity planning (BCP), including defining Restore Point Objectives (RPOs) and Recovery Time Objectives (RTOs). The role ensures compliance with cyber security and information governance policies whilst providing subject matter expertise across the organisation. You will advise colleagues and senior stakeholders and act as a key liaison with third-party providers to safeguard our digital environment and ensure alignment with standards and audit requirements. This is a hands-on, standalone cyber security role. As the organisation's senior cyber security authority, the postholder will be the sole individual delivering cyber security activity, working closely with the Technology Manager and external IT provider. The role combines strategic oversight and independent risk-based decision-making with direct ownership of day-to-day cyber security delivery, driving continuous improvement in security maturity and organisational resilience.
About you
We are seeking an experienced cyber security professional with expertise in frameworks such as ISO *****, NIST, CIS Controls, GDPR, the UK Data Protection Act, and Cyber Essentials. The successful candidate will bring expertise in disaster recovery, business continuity, risk management, internal controls, and security technologies including SIEM, firewalls, EDR, MFA, encryption, Microsoft Purview, and Microsoft Entra. Experience with incident response, cyber forensics, enterprise security architecture, secure-by-design principles, and managing third-party security risks is essential. The ideal candidate will have strong analytical and investigative skills to assess, document, report, and escalate cyber risks confidently. You will interpret vulnerability scans and penetration tests, evaluate cyber risks in projects or procurement, and deliver awareness programs, phishing simulations, and staff training. Excellent communication and stakeholder management skills are critical, including briefing senior leaders, liaising with external partners, and making high-impact security decisions under pressure. You will have hands-on experience working with cyber security tools or SOC services to monitor, detect, and respond to threats, as well as experience leading or supporting incident investigations and coordinating DR and BCP exercises. The role also involves supporting audits, compliance certifications, policy deployment, and regulatory requirements, with experience providing strategic advice to senior leadership or Boards.
How to apply
If you share our passion and this role sounds like you, then we're looking forward to hearing from you. Please submit your CV and supporting information via our online application platform. The closing date for applications is 19th January ****. Interviews will take place TBC. We reserve the right to bring the closing date forward should enough quality applications be received prior to the current closing date.
Additional Information
Applications are welcome from all, regardless of age, disability, marriage or civil partnership, pregnancy or maternity, religion or belief, race, sex, sexual orientation, trans status or socioeconomic background. We positively encourage applications from people from marginalised backgrounds, including but not limited to those with experience of living in poverty. We are committed to being an anti-racist organisation and operate an anonymised recruitment process so that bias is eliminated from the shortlisting process. In support of our approach to flexible working, we are happy to receive applications from those seeking full-time employment, as well as those who may want to share the role on a part-time basis. When making your application, please state whether you want to be considered for either full or part-time work and, if part-time, the number of hours per week you would be looking for. At JRF we're at our best when we're continually building on trust, showing we care and making a difference β and hope others will do the same. So, for those roles which allow it, we're developing a more blended approach to how and where you work. This means you can expect to work flexibly between the office and home (with an expectation of two days a week in your home office). We encourage you to read our EVP, which is located here: We are a Disability Confident Employer. If you have any additional needs and need reasonable adjustments to be made to the interview process, please let us know.
Cyber Security Lead in Scarborough employer: Joseph Rowntree Foundation and Joseph Rowntree Housing Trust
Contact Detail:
Joseph Rowntree Foundation and Joseph Rowntree Housing Trust Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Cyber Security Lead in Scarborough
β¨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, attend industry events, and join relevant online forums. You never know who might have the inside scoop on job openings or can put in a good word for you.
β¨Tip Number 2
Show off your skills! Create a personal project or contribute to open-source initiatives that showcase your expertise in cyber security. This not only builds your portfolio but also demonstrates your passion and commitment to potential employers.
β¨Tip Number 3
Prepare for interviews by brushing up on common cyber security scenarios and case studies. Be ready to discuss how you've handled incidents in the past and what strategies you would implement in this role. Confidence is key!
β¨Tip Number 4
Don't forget to apply through our website! Itβs the best way to ensure your application gets seen. Plus, it shows you're genuinely interested in joining our team at JRF and JRHT. Let's make it happen!
We think you need these skills to ace Cyber Security Lead in Scarborough
Some tips for your application π«‘
Tailor Your CV: Make sure your CV is tailored to the Cyber Security Lead role. Highlight your experience with frameworks like ISO and NIST, and showcase your skills in incident response and risk management. We want to see how your background aligns with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how you can contribute to our mission. Be sure to mention any relevant projects or achievements that demonstrate your expertise.
Showcase Your Communication Skills: As a Cyber Security Lead, you'll need to communicate effectively with various stakeholders. In your application, highlight instances where you've successfully briefed senior leaders or liaised with external partners. We love seeing strong communication skills!
Apply Through Our Website: Don't forget to submit your application through our online platform! It's the easiest way for us to review your materials and get back to you. Plus, it shows you're serious about joining our team at StudySmarter!
How to prepare for a job interview at Joseph Rowntree Foundation and Joseph Rowntree Housing Trust
β¨Know Your Cyber Security Frameworks
Make sure you brush up on key frameworks like ISO, NIST, and GDPR before the interview. Being able to discuss how these frameworks apply to the role will show that youβre not just familiar with them, but that you can also implement them effectively.
β¨Prepare for Scenario-Based Questions
Expect questions that ask you to respond to hypothetical security breaches or incidents. Think through your past experiences and be ready to explain how you would handle various situations, including disaster recovery and incident response.
β¨Showcase Your Communication Skills
Since this role involves liaising with senior stakeholders and external partners, practice articulating complex cyber security concepts in simple terms. Highlight your experience in briefing leaders and conducting training sessions to demonstrate your communication prowess.
β¨Demonstrate Analytical Thinking
Be prepared to discuss how you assess and document cyber risks. Bring examples of how you've interpreted vulnerability scans or penetration tests in the past, and be ready to explain your thought process when making high-impact security decisions.