Head of Cyber Security

Head of Cyber Security & Information Security

Manchester based (2 days in office / 3 days remote)

£80,000 – £120,000

Our client, a well-established and growing regional law firm, is now seeking to appoint a Head of Cyber Security & Information Security to lead and evolve its security, risk and compliance strategy.

This is a senior leadership role requiring an individual with proven experience operating at Cyber Security Manager, Information Security Manager or Head of Information Security level within a law firm or professional services environment.

The successful candidate will take ownership of the firm’s cyber security posture, while also ensuring robust information governance, regulatory compliance and data protection standards are maintained across the business.

The Role

As Head of Cyber Security & Information Security, you will:

• Lead the firm’s cyber security and information security strategy
• Oversee proactive and reactive threat defence measures
• Ensure alignment with legal regulatory and compliance frameworks
• Work closely with senior leadership on risk management and governance
• Oversee security policies, controls, audits and reporting
• Manage and develop the in-house security function (currently 4 team members, including a Cyber Security Architect)
• Act as the firm’s senior escalation point for security incidents
• Whilst architecture expertise is not essential (given the existing Cyber Security Architect), strong experience in security strategy, governance and risk management is critical.

Required Experience & Background

We are particularly interested in individuals who have:

• Operated as a Cyber Security Manager, Information Security Manager or Head of Security within a law firm
• Strong exposure to legal compliance, regulatory frameworks and information governance
• Experience working with data protection and confidentiality requirements in a legal environment
• A strong understanding of risk, audit and security governance processes
• Experience reporting to board or senior partner level
• Experience within the legal sector is highly desirable due to the regulatory and client confidentiality landscape.

Technical Environment

Strong knowledge of the following technologies is required:

• Microsoft Defender & Sentinel
• MS E5 Security Suite
• Tessian / Proofpoint
• Mimecast
• Azure Active Directory & on-prem Active Directory
• Microsoft Endpoint Manager & Group Policy
• VMware virtual server infrastructure
• Citrix XenApp / XenDesktop / WEM
• Windows Server & Desktop environments (with exposure to Mac/Linux beneficial)
• iOS and Android device management
• Networking fundamentals and LAN troubleshooting
• IT Service Management systems

Personal Profile:

• Strategic thinker with strong commercial awareness
• Ability to balance cyber resilience with regulatory compliance
• Confident stakeholder communicator at senior level
• Analytical and methodical problem solver
• Strong leadership capability

Location & Package

Manchester based (2 days in office / 3 days remote)

£80,000 – £120,000 salary

Permanent position

Please note: the firm does not offer visa sponsorship