Enable job alerts via email!
Head of Information Security
James Adams
Birmingham
Hybrid
GBP 110,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading global organization in the West Midlands is seeking a Head of Cyber GRC to take ownership of IT security compliance and GRC strategy. This senior role, reporting to the CIO, involves defining the GRC strategy aligned with regulatory requirements, managing risk, and ensuring audit readiness. The ideal candidate will have significant IT security experience and strong leadership skills. This position offers a salary of £110k plus bonuses and car allowances, with a hybrid working model of 3 days in the office.
Qualifications
- Significant experience in IT security, governance, risk and compliance.
- Strong understanding of global regulatory requirements and industry standards.
- Experience in large, complex, or highly regulated environments.
Responsibilities
- Defining and leading the enterprise IT GRC strategy.
- Overseeing IT risk management across systems and operations.
- Ensuring compliance with GDPR, SOX, NIS2, and managing audits.
- Developing and maintaining security policies and procedures.
Skills
Head of Cyber GRC
📍West Midlands | 🌍 Global Organisation | 💼 FTSE 100
I've partnered with a FTSE 100 organisation in their search for a Head of Cyber (GRC). This is a brand new role, and it plays a big part of their continued focus on security, compliance, and risk maturity.
This is a senior role reporting directly to the CIO, with accountability for regulatory compliance, audit readiness, and embedding a strong security and risk culture across the organisation.
The role
You’ll take ownership of IT security compliance and GRC strategy, ensuring alignment with business objectives and global regulatory requirements.
Key responsibilities include :
- Defining and leading the enterprise IT GRC strategy, aligned to ISO 27001 and wider regulatory frameworks
- Overseeing IT risk management across systems, operations, and third parties
- Ensuring compliance with GDPR, SOX, NIS2, ISO 27001 and managing internal / external audits
- Developing and maintaining security policies, procedures, tools, and processes
- Driving risk assessments across internal environments and the supply chain
- Promoting a strong culture of GRC awareness through training and stakeholder engagement
- Providing clear reporting to senior leadership and the board
- Leading and developing a team of direct reports
- Supporting critical incident and response activities when required
What we're looking for
- Significant experience in IT security, governance, risk and compliance, including senior leadership exposure
- Strong understanding of global regulatory requirements and industry standards (GDPR, ISO 27001, NIST, etc.)
- Experience operating in large, complex or highly regulated environments
- Excellent stakeholder management and communication skills
- Ability to balance strategic leadership with operational execution
💰 £110k + Bonus + Car Allowance
📌 West Midlands (3 days a week)
🧭 High influence and strategic ownership
If you’re a GRC leader looking to make a tangible impact across a complex enterprise environment, please reach out to me with your CV to george.monk@jamesadamsgroup.com
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
