Back

Head of Information and Cyber Security

  • The Law Society
  • Jan 14, 2026
Full time I.T. & Communications

Job Description

About the Role

The Law Society is seeking an experienced and visionary Head of Information and Cyber Security to lead their enterprise-wide security strategy. You will define and deliver the security roadmap, manage information and IT risk, and embed a strong security culture across the organisation. Reporting to the Executive Director of Technology & Change, you will act as a trusted adviser, translating complex risks into clear business terms and ensuring they remain secure, resilient, and agile.

Key Responsibilities

  • Provide strategic leadership for information and cyber security across the organisation.
  • Define and implement the security roadmap, ensuring compliance with regulatory frameworks.
  • Manage enterprise-wide security and IT risk, including risk registers, control testing, and executive reporting.
  • Develop and embed a cross-organisation security awareness culture.
  • Oversee security operations and incident response at a leadership level.
  • Ensure robust business continuity, disaster recovery, and operational resilience frameworks.
  • Design and manage security assurance and audit programmes.

About You

We re looking for a proven security leader with:

  • A track record in leading enterprise-level information security functions or programmes (Head of, Deputy CISO, or equivalent).
  • Deep knowledge of governance, risk management, compliance, and frameworks such as ISO 27001, GDPR, Cyber Essentials, and NIST.
  • Ability to balance security risk with business agility using a pragmatic, risk-based approach.
  • Experience developing and embedding security awareness across an organisation.
  • Strong expertise in cloud security (Azure, M365), data protection, identity & access management, and modern security tooling.
  • Understanding of AI, automation, and emerging technology risk management.
  • Leadership experience in security operations and incident response.
  • Knowledge of business continuity, disaster recovery, and operational resilience frameworks.
  • Experience designing and managing security assurance and audit programmes.

Why Join Us?

This is a unique and exciting opportunity to shape the security posture of a leading professional body, ensuring resilience and trust in their systems and services. You ll work at the heart of the Technology & Change function, influencing strategy and enabling innovation.

Closing date 1st February 2026

Interviews w/c 2nd February 2025

About The Law Society
Apply Now