Search
Header navigation
Head of Information and Cyber Security

Head of Information and Cyber Security

London Borough of Enfield
locationEnfield EN1, UK
remoteOn-Site
ExpiresExpires: Expiring in less than 3 weeks
IT
Full time
    We are seeking a Head of Information and Cyber Security to lead our organisation wide approach to protecting the Council and the people we serve. This is a senior, high impact leadership role for a professional who can combine technical authority with strategic influence, partnership working, and confident decision making at the highest levels.
    We welcome the use of artificial intelligence as a drafting aid. However, applications must clearly evidence your own experience, judgement and decision making. Applications that rely on generic or unverifiable content are unlikely to progress. This role requires a regular onsite presence to provide visible leadership, engage with senior stakeholders, and lead during incidents.

    About the role
    This is a strategic leadership role. While you will bring strong technical credibility, hands on configuration or operational delivery are not the focus of this post.
    As our Head of Information and Cyber Security, you will:

    - Lead the development, implementation and continuous improvement of the Council’s cyber security framework, aligned to our Digital, Data and AI Strategy.

    - Provide clear, evidence based advice and guidance to senior leaders, Members, and corporate boards, representing Digital Services at Audit Committee, Assurance Board, Overview & Scrutiny and Cabinet.

    - Shape and drive innovative approaches to information and cyber security, ensuring our systems, services and solutions are secure by design.

    - Manage and inspire a multidisciplinary inhouse team and ensure effective oversight of key suppliers and partners.

    - Oversee the Council’s readiness for cyber incidents and personally lead the response to major technical security events, working closely with bodies such as the NCSC, LOTI and regional cyber‑resilience networks

    - Ensure cyber security is embedded into business continuity, risk management, procurement, and major change programmes.

    - Drive measurable organisational awareness and culture change, promoting secure behaviours across a diverse workforce.

    - Maintain compliance with major frameworks and standards including PSN, PCIDSS, DPA, GDPR and ISO27001.

    - Manage budgets, contribute to business cases and ensure value for money in all activity.

    About you
    We are looking for a candidate who brings experience of working in an environment with high public accountability, political scrutiny, legacy and modern technology estates, constrained budgets, and live service risk, delivering at pace while ensuring security and resilience.
    You will have personally led complex cyber incidents through decision making, stakeholder communication, regulatory engagement, and recovery.
    You will also bring:

    - Demonstrable capability in cyber security risk management, security frameworks, service management and incident response at scale.

    - Experience influencing senior stakeholders and communicating complex issues clearly to nontechnical audiences.

    - A strong track record of leading, developing and motivating a high performing team.

    - Deep knowledge of standards such as ISO27001, PCIDSS and associated regulatory frameworks.

    - Experience holding suppliers to account, including challenging assurance, delivery quality, and value for money.

    Qualifications
    At least one of the following (or an equivalent qualification we can independently verify):

    - CISSP

    - CISM

    - CRISC

    Leadership & behavioural qualities
    We want a leader who:

    - Takes responsibility with a positive, problem-solving mindset.

    - Acts with openness, honesty and respect.

    - Listens actively, reflects and adapts.

    - Works collaboratively across boundaries to find solutions.

    Other requirements
    This role requires a minimum of two days per week onsite in Enfield, with additional attendance during major incidents, key meetings, or periods of heightened risk.

    Why Enfield Council?
    Working for Enfield means joining a diverse, values‑driven organisation that is committed to fairness, inclusion and improving outcomes for all residents. You’ll shape the Council’s cyber resilience at a time of significant organisational transformation, with committed leadership and dedicated investment in digital innovation and security.
    We welcome applications from candidates of all backgrounds and encourage applications from under‑represented groups. We are a Disability Confident employer.

    How to apply
    If you are an experienced cyber security leader with the strategic vision, professional credibility and inclusive leadership style to shape Enfield’s security future, we would love to hear from you.

    We do not see your name or title when shortlisting your application. This is one of many initiatives to build a more talented and diverse workforce. However, if you put your name on your CV or Statement it will be visible to us. For this reason, we ask that you do not include your name on these documents. Please note it is your responses to the Essential/Desirable criteria, as detailed in the Job Description and Person Specification which is available on the job advert, that will determine if you are shortlisted for an interview, therefore we encourage you to always address the essential and desirable criteria in your application/CV.
    We are passionate about our people and how we deliver services to our community in Enfield. That’s why we encourage a culture that puts our customers at the heart of everything we do - by empowering our people to work together to find solutions, be open, honest and respectful, take responsibility and listen and learn. If you value these behaviours too, we’d love to hear from you - and of course we are always happy to talk flexible working, click here to find out more.
    Why it's great to work for Enfield Council:

    - An excellent pension through the Local Government Pension Scheme (LGPS).
    - Up to 32 days annual leave depending on grade and length of service. You will also get eight public holidays per year and an extra day off at Christmas.
    - A blend of remote and office based working for most roles.
    - Interest free season ticket loan repayable over three or ten months.
    - Career development and learning experiences from a range of training courses and learning methods.
    - Employee Assistance Programme to provide advice and counselling services. This is a free and confidential service available to staff and members of their family.
    - Health and leisure discounts and tax-free bikes for work.
    - 1 month's paid sabbatical for registered Social Workers working in Children's Social Care.

    We reserve the right to close this vacancy once a sufficient number of applications have been received. Therefore, we advise that you complete fully and submit your application as soon as possible to avoid disappointment.
    If you have previously applied for this role within the past 6 months, unfortunately, a second application will not be considered.