Head of Security

Role: Head of Security (Cyber Security)

Reporting to: CTO

Location: Remote - UK with the requirement to be in our Liverpool HQ at least once per month

Job Type: Full-time, Permanent

Salary: Competitive, based on experience + benefits + bonus potential

Join The Investigo Group (TIG), a dynamic coalition of tech firms specialising in Platform, Software, Data, AI and other cutting-edge technology solutions. Our innovative capabilities span the globe and originate from the United Kingdom. The group is multi-functional with a large portfolio of B2B products and services.

Our ecosystem includes:

• IIS, providing secure internet access in both the public and private sectors.
• Vestigo Consulting, a training and consultancy company offering specialist sector-specific knowledge, CPD, and deployment support.
• Collaboraite, a data and AI capability partner focused on secure data solutions delivered through design thinking and agile coaching.

The group delivers bespoke, secure, user-centric products supported by deep technical knowledge, data, and analytical skills. We partner with leading organisations to meet challenging needs with world-leading enterprise product sets. Join TIG to shape the future of technology solutions for a safer, more efficient world.

You are an accomplished security leader with the credibility to influence at Board level and the technical depth to guide teams across cyber, physical, personnel, and operational resilience. You thrive in complex, high-stakes environments where risk management, regulatory compliance, and innovation must coexist.

You are equally comfortable defining long-term strategy as you are solving immediate challenges. You have a track record of building and leading multidisciplinary teams and foster a culture of accountability, collaboration, and continuous improvement.

You bring proven experience shaping security functions in government, defence, critical national infrastructure, or highly regulated commercial sectors, and are fluent in security operations and business transformation. Above all, you view security as a business enabler—protecting today while preparing for tomorrow.

The Security & Resilience team spans cyber, physical, personnel, and operational resilience. The function delivers the organisation-wide Security Strategy, security operations, architecture, compliance, risk management, and resilience activities. As Head of Security, you will build and lead this cross-disciplinary team, ensuring ongoing development, resource alignment, and targeted training and awareness programmes. The team collaborates with engineering, DevSecOps, compliance, legal, and senior leadership to embed security-by-design and scalable security practices.

We are looking for a seasoned and strategic Head of Security to own the organisation's entire security landscape, spanning cyber, physical, personnel, and operational resilience. This senior leadership role ensures security protects and enables growth.

You will set and deliver a comprehensive security strategy that balances commercial ambitions with risk management, regulatory compliance, and resilience. You will act as a trusted advisor to the Board, providing visibility of threats, opportunities, and priorities while shaping security as a business enabler.

Leading a high-performing, cross-disciplinary team, you will drive innovation across security operations, architecture, risk, and assurance, embedding a security-first culture that supports long-term success.

• Strategic Leadership & Governance
• Report on KPIs, threat landscape, and security posture to the Board of Directors.
• Lead the development and delivery of the organisation-wide Security Strategy.
• Align security operations with commercial expansion goals and emerging geopolitical and sector trends.
• Champion a security-first culture across all departments.
• Shape security as a business-enabling capability.

• Security Operations & Architecture
• Oversee the design, implementation, and operation of a modern Security Operations Centre (SOC), resilience programmes, red-teaming, insider threat monitoring, and secure architecture consulting.
• Lead proactive threat intelligence, detection, and response efforts.
• Drive security-by-design with engineering and DevSecOps teams.
• Create and mature a Security Architecture function supporting SSDLC and product security.

• Risk, Compliance & Assurance
• Own the enterprise risk register and redefine the organisation's approach to risk and resilience.
• Ensure compliance with local, international, and sector-specific standards (e.g., GDPR).
• Oversee supply chain and third-party risk assessments, security onboarding, and vendor compliance.
• Lead ISMS development and manage external audits and certifications.
• Build and lead a cross-disciplinary security team and ensure continuous development and resource alignment.
• Deliver targeted training, simulations, and awareness campaigns to build a secure-by-default workforce.
• Establish performance dashboards and feedback loops to measure effectiveness and drive improvement.

• Engagement & Stakeholder Management
• Participate in the Senior Leadership Team, contributing to enterprise-level transformation and strategy.
• Collaborate with legal, compliance, and engineering teams to ensure scalable security practices.
• Engage with external regulators, government bodies, and strategic partners to share intelligence and influence standards.

• Resilience & Incident Management
• Lead incident response, recovery, and post-incident review processes.
• Design and scale resilience testing to improve maturity and customer trust.

What we're looking for:

• Proven experience in a senior InfoSec or Head of Security role, preferably in government, defence, law enforcement, or highly regulated sectors.
• Deep understanding of risk management, compliance, and resilience within complex organisations.
• Strong leadership and communication skills, with experience advising C-level stakeholders and Boards.
• Technical fluency across cybersecurity, security architecture, threat intelligence, and secure development lifecycles.
• Demonstrable track record of building high-performing, cross-functional security teams.
• Experience with security standards and frameworks.
• Strategic thinker with the ability to translate evolving threat landscapes into actionable business outcomes.

Eligibility is required; holding current SC clearance at application is not essential.

• Flexible Working: Hybrid & remote options.
• Private Medical
• Inclusive Culture
• Flexible Benefits: Discounts and more
• Learning: Continuous learning and development opportunities.
• Bonus Potential: Based on performance and business factors.
• Discounts on a wide range of products and services
• Pension: Government top-up pension scheme contributions
• EV Car Scheme
• More Benefits: See career site for details.

Note: The talent acquisition team is managing this vacancy directly; we do not require agency support. Successful candidates will undergo relevant security checks.