Enable job alerts via email!
A leading regulatory agency in the UK seeks a Head of Cyber and Information Security to enhance its cyber security strategy and operations. The ideal candidate will have substantial leadership experience in cyber security, hold relevant certifications, and possess a proven track record in incident response and stakeholder engagement. This role offers a salary of £73,324 per annum plus benefits and is based in London or Hertfordshire.
Head of Cyber and Information Security
Salary: £73,324 per annum plus up to £20,000 allowance plus benefits
Location: Canary Wharf, London or South Mimms, Hertfordshire
Contract: Full Time/Permanent
Closing date: 24 August 2025
The MHRA is transforming. Through enabling innovation, making the right judgements of the benefits and risks of medical products and forging the right partnerships in the UK and internationally, it aims to deliver world class regulation and improved outcomes for UK patients.
We are currently looking for a Head of Cyber and Information Security to join our Technology & Service Operations function within the Digital & Technology group.
The postholder will lead MHRA’s cyber and information security strategy and operations. They will ensure digital services are secure, resilient, and meet government security standards. Responsibilities include providing strategic direction, managing security risks, ensuring compliance, anticipating challenges, driving performance, and developing necessary capabilities. They also assist the Senior Information Risk Owner (SIRO) in protecting the Agency’s information and data assets.
Our successful candidate will be able to demonstrate they meet the following criteria:
• Leadership: Significant experience leading multi-disciplinary cyber and information security teams, with a track record of delivering complex cyber programmes and developing high-performing teams.
• Security Professional Certifications: Holds one or more industry-recognised certifications such as CISSP, CISM, CCISO or equivalent executive-level security certification
• Incident Response Expertise: Demonstrable experience leading security investigations and incident response, including handling malware outbreaks, data loss events, and network intrusions.
• Strategic Influence: Experience in setting and executing cyber and information security strategy, with the ability to engage, influence, and advise stakeholders at all levels, including senior executives and board members.
To find out more and apply for this role, please visit: