Chief Information Security Officer (CISO)

About us

UCL is consistently ranked among the world's top 10 universities, home to over 50,000 students and 17,000 staff, and renowned for its pioneering research, transformative education, and global impact. As our digital landscape grows in scale and complexity, the security of our information, systems and research has never been more critical.

About the role

Reporting directly to the Chief Information Officer, you will be accountable for all aspects of information and cyber security at UCL. You will set the vision for our Information Security Group (ISG), lead the development of a university-wide security strategy, and ensure that UCL remains secure, resilient, and trusted as we deliver world-class teaching and research. You will work in partnership with academic faculties, professional services, and senior leaders to embed a strong security culture, ensure security is considered in all change initiatives, and oversee the design and operational effectiveness of UCL's security controls framework.

• Set the overall vision and strategy for information and cyber security at UCL.
• Provide overall vision and strategy for the UCL Information Security Group (ISG).
• Lead the creation and delivery of UCL's security strategy and roadmap.
• Champion a strong, measurable security culture across the university.
• Partner with academic schools and professional services to manage and mitigate security risk.
• Ensure UCL is secure by design, with security embedded in all activities and change programmes.
• Own and maintain all security policies, standards and frameworks.
• Oversee the design and operational effectiveness of UCL's security controls framework.
• Work closely with the Data Privacy Officer to ensure appropriate data protection controls.
• Act as a visible, credible leader for security within UCL and the wider sector.

About you

You will bring:

• Significant senior-level experience in information security leadership, with deep expertise in risk management.
• Proven delivery and expertise in Information Security and deep understanding of risk management principles.
• A track record of transforming security in large, complex, matrixed organisations.
• Strong knowledge of security technologies, strategies, and process design.
• Experience building high-performing teams and leading through influence.
• Excellent stakeholder management skills, with the ability to build trust at the most senior levels.
• A proactive, solutions-focused mindset and the confidence to lead change.
• Outstanding communication skills and the ability to inspire confidence across diverse communities.

Experience in the higher education sector is desirable but not essential.

What we offer

Salary is negotiable for the right candidate the range £120k to £150k. As well as the exciting opportunities this role presents, we also offer some great benefits:

• Base salary is negotiable
• 41 Days holiday (27 days annual leave, 8 bank holiday and 6 closure days)
• Additional 5 days' annual leave purchase scheme
• Defined benefit career average revalued earnings pension scheme (CARE)
• Cycle to work scheme and season ticket loan
• Immigration loan
• Relocation scheme for certain posts
• On-Site nursery
• On-site gym
• Enhanced maternity, paternity and adoption pay
• Employee assistance programme: Staff Support Service
• Discounted medical insurance

This role meets the requirements for a Skilled Worker certificate of sponsorship or Global Talent visa under UK Visas and Immigration legislation. UCL welcomes applications from international applicants who require a visa. We will consider applications to work on a part-time, flexible, and job share basis wherever possible.

Our commitment to Equality, Diversity and Inclusion

As London's Global University, we know diversity fosters creativity and innovation. We are committed to equality of opportunity, to being fair and inclusive, and to being a place where we all belong. We particularly encourage applications from candidates underrepresented in UCL's workforce, including those from Black, Asian and ethnic minority backgrounds, disabled people, and - for Grade 9 and 10 roles - women. Applicants should also familiarise themselves with UCL's policies on Prevention of Bullying, Harassment and Sexual Misconduct Policy and Personal Relationships Policy.