Chief Security Officer

£100,000 up to a maximum of £162,500 per annum for an exceptional candidate.

Belfast, Birmingham, Bristol, Cardiff, Edinburgh, Glasgow, Leeds, Liverpool, London (100 Parliament Street, Croydon or Stratford), Manchester, Newcastle, Nottingham, Portsmouth or Telford.

Regular travel to multiple locations is expected. We work on a hybrid basis with a minimum of 60% of our working time required to be spent in an office location. Please note, salary is dependent upon experience and the band maximum is not guaranteed. For existing Civil Servants, Standard Civil Service pay rules apply.

Almost every individual and business in the UK is a direct customer of HMRC, as we collect the money that pays for the UK's public services and gives people who need it vital financial support. Over recent and coming years, our work never has been, nor will be, more critical as we rebuild and secure our nation's future. With these demands in mind, and as one of the largest and most digitally focussed organisations in the UK, sits the role of Chief Security Officer. As an organisation ever driving towards a high performing trusted and modern tax administration system which is closing the tax gap and becoming ever more agile in serving the British public- promoting sustainable economic growth and supporting millions across the UK and beyond. You will be securing one of the richest data sets available on UK citizens, and as Chief Security Officer, you will have the awesome responsibility for securing the vehicle by which the UK funds itself- leading a team responsible for people data and systems security, collaborating with cross government partners and leading on collaborative security initiatives to deliver a best in class operation across the civil service. As an established and accomplished leader with significant credibility, you will be comfortable operating at both the strategic and operational levels, setting a clear and tangible vision. You will also use your influence and collaborative skills to build consensus and drive delivery across the entire enterprise to ensure platforms, data, and services, are safeguarded against evolving threats. You will bring strategic vision, technical expertise, and strong leadership to a complex and fast-paced environment, shaping the future of security across one of the UK's largest public sector organisations.

• Lead on HMRC's security and data protection (GDPR) strategic vision, direction, and budget, ensuring alignment with organisational objectives.
• Provide strategic and operational leadership to HMRC's Security Function (circa 400 personnel).
• Oversee the operations and strategic direction of a Fraud Prevention Centre (circa 100 personnel).
• Adopt a proactive and engaged stakeholder management strategy both internally and across government to maintain and develop the credibility and trust in the Security function at HMRC.
• Establish and maintain HMRC's security program to ensure that information assets, associated technology, applications, systems, infrastructure, and processes are adequately protected.
• As a key member of the CDIOs SLT, contribute to overall CDIO policy making and strategy for infrastructure and application services, including strategic planning and procurement decisions.
• Lead, motivate, develop, and appraise team members, building a customer-centric, effective, and coherent security culture.

• Professional Expertise & Standards - demonstrates a deep and current understanding of information security principles, technologies, and control frameworks. This is evidenced by relevant academic qualifications (degree or postgraduate highly desirable) and professional certifications such as CISSP, CISM, or equivalent. Shows a strong commitment to delivering against recognised industry standards and best practices.
• Executive Security Leadership - proven strategic leadership in managing security, risk, and compliance across large-scale, complex IT environments. Brings an outstanding track record of shaping and delivering enterprise-wide security programmes that support organisational resilience and regulatory compliance.
• Technical Authority & Innovation - extensive technical expertise across multiple domains of security and compliance, with the ability to exercise independent judgment and make high-impact decisions. Demonstrates a forward-looking approach to emerging threats, including experience in researching and implementing innovative solutions such as Zero Trust architectures, secure AI, and other cutting edge security models.
• Strategic Influence & Stakeholder Management - exceptional influencing, negotiation, and relationship building skills, with a proven ability to engage and maintain trust with senior stakeholders across government, industry, and third party providers. Able to align security strategy with broader organisational goals through effective cross functional collaboration.
• Organisational Change & Vision - demonstrable experience in anticipating and preparing for major organisational or technological shifts, including emerging cyber threats. Confidently leads through uncertainty, ensuring the organisation remains agile, informed, and resilient.
• Team Leadership & Development - proven ability to build, lead, and develop high performing teams across multiple locations. Skilled in empowering senior managers and specialists within the security and compliance disciplines, fostering a culture of excellence, accountability, and continuous improvement.

This role is open to public sector and private sector candidates and would suit someone with experience of working inside large scale organisations. Your work will impact tens of millions of citizens and many businesses across the UK and abroad and represents an opportunity to lead and influence Security strategy at a scale rarely matched and at the highest levels within the civil service.

For further information or to apply please email or contact Dave Flynn on to arrange an informal conversation.