Our client, a leading organisation within the defence and advanced technology sector, is seeking a Product Cyber Security Specialist to support the delivery of secure, mission critical systems. This role offers the opportunity to work across complex engineering programmes, contributing to the protection and resilience of advanced defence platforms. The Role As a Product Cyber Security Specialist, you will provide cyber security expertise across the full systems engineering lifecycle. Working closely with engineering and delivery teams, you will support the identification, assessment and management of cyber risks, ensuring security is embedded throughout product development. You will also contribute to the ongoing development of product cyber security capabilities, including the use of automation and emerging technologies to enhance assurance processes. Key Responsibilities Support and enhance automation of cyber security risk and vulnerability assessment activities, including the use of advanced technologies Provide cyber security expertise across the product systems engineering lifecycle Maintain and manage cyber security risk artefacts, ensuring accuracy and consistency Provide timely technical guidance to engineering and delivery teams Plan cyber security activities and contribute to project estimates and planning Support delivery of proportionate and effective cyber security approaches across programmes Contribute to the development and continuous improvement of cyber security capability Essential Requirements Degree in Engineering, Computer Science, Cyber Security, or equivalent experience Strong background in cyber security and/or engineering environments Interest in cyber security within industrial control systems or operational technology Experience working with engineering or cyber design data Awareness of industrial control systems environments Knowledge of cyber security frameworks such as NIST CSF Experience in threat modelling using frameworks such as MITRE ATT&CK, DEF3ND or EMB3D Experience in cyber security risk management Familiarity with vulnerability, patch and update management processes Desirable Skills Understanding of Secure by Design principles aligned to UK MOD standards (e.g. DEFSTAN 05-139, DEFSTAN 05-138) Familiarity with ISA/IEC 62443 Experience or certifications relating to operational technology or industrial control systems This is an opportunity to join a well established organisation delivering advanced solutions within the defence sector. The role offers strong potential for professional development and involvement in high impact, technically challenging programmes.
Apr 15, 2026
Full time
Our client, a leading organisation within the defence and advanced technology sector, is seeking a Product Cyber Security Specialist to support the delivery of secure, mission critical systems. This role offers the opportunity to work across complex engineering programmes, contributing to the protection and resilience of advanced defence platforms. The Role As a Product Cyber Security Specialist, you will provide cyber security expertise across the full systems engineering lifecycle. Working closely with engineering and delivery teams, you will support the identification, assessment and management of cyber risks, ensuring security is embedded throughout product development. You will also contribute to the ongoing development of product cyber security capabilities, including the use of automation and emerging technologies to enhance assurance processes. Key Responsibilities Support and enhance automation of cyber security risk and vulnerability assessment activities, including the use of advanced technologies Provide cyber security expertise across the product systems engineering lifecycle Maintain and manage cyber security risk artefacts, ensuring accuracy and consistency Provide timely technical guidance to engineering and delivery teams Plan cyber security activities and contribute to project estimates and planning Support delivery of proportionate and effective cyber security approaches across programmes Contribute to the development and continuous improvement of cyber security capability Essential Requirements Degree in Engineering, Computer Science, Cyber Security, or equivalent experience Strong background in cyber security and/or engineering environments Interest in cyber security within industrial control systems or operational technology Experience working with engineering or cyber design data Awareness of industrial control systems environments Knowledge of cyber security frameworks such as NIST CSF Experience in threat modelling using frameworks such as MITRE ATT&CK, DEF3ND or EMB3D Experience in cyber security risk management Familiarity with vulnerability, patch and update management processes Desirable Skills Understanding of Secure by Design principles aligned to UK MOD standards (e.g. DEFSTAN 05-139, DEFSTAN 05-138) Familiarity with ISA/IEC 62443 Experience or certifications relating to operational technology or industrial control systems This is an opportunity to join a well established organisation delivering advanced solutions within the defence sector. The role offers strong potential for professional development and involvement in high impact, technically challenging programmes.
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
Apr 15, 2026
Full time
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
We are seeking an experienced Head of Cyber Security and Productivity Solutions to lead the protection of the company's information, systems and users across all global environments. This senior leadership role is responsible for embedding security by default across every layer of technology, ensuring that security controls are not only documented but consistently applied and operationally effective. The role owns information security operations and modern workplace services, spanning identity and access management, endpoint security, data protection, threat detection, incident response and compliance monitoring. Operating across a complex, global technology estate, the Head of Cyber Security and Modern Workplace Operations ensures alignment with recognised governance and control frameworks, including ISO27001, NIST 800-53, NIST 800-171, Essential 8 and Cyber Essentials Plus. This role acts as the operational bridge between IT, Risk and Compliance, ensuring that security and compliance requirements are embedded into day-to-day operations and technology delivery. It works closely with Technical Operations to ensure infrastructure resilience and with Service Operations to support rapid containment, investigation and root cause analysis of security-related incidents. In addition, the role leads the Modern Workplace domain, ensuring that end-user devices, collaboration tools and SaaS platforms are secure, well governed and deliver a high-quality user experience. Key Responsibilities Cyber security operations leadership Lead information security operations across all global environments. Embed a security by default approach across infrastructure, platforms and digital services. Ensure security controls are operationally effective and aligned with business needs. Manage the relationship with Managed Service Security Partners (MSSP). Governance, risk and compliance Own compliance alignment with ISO27001, NIST 800-53, NIST 800-171, CMMC, Essential 8, DISP and Cyber Essentials Plus. Ensure ongoing audit readiness through proactive monitoring, evidence collection and control validation. Act as the operational interface between IT, Risk and Compliance functions. Identity, access and endpoint security Own identity and access management standards, including multifactor authentication and conditional access. Lead endpoint security and management, including configuration, policy enforcement and lifecycle management using platforms such as Intune and Defender. Ensure consistent application of security standards across all user devices and environments. Threat detection, monitoring and incident response Oversee continuous monitoring, threat detection and security event management. Lead incident response readiness, coordination and post-incident analysis. Work closely with Service Operations to ensure rapid containment and effective remediation of security incidents. Vulnerability and patch management Coordinate vulnerability identification, prioritisation and remediation across infrastructure, platforms and endpoints. Ensure effective patch management processes are in place and aligned with risk based priorities. Modern workplace operations Lead the secure design, configuration and lifecycle management of the modern workplace environment. Ensure communication and collaboration tools are secure, compliant and user focused. Balance security controls with usability and productivity. Policy, configuration and audit readiness Ensure security configurations, policies and standards are clearly defined, enforced and monitored. Maintain audit readiness through strong documentation, reporting and control assurance. User awareness and behavioural security Lead user awareness and behavioural security training programmes. Promote secure working practices and a strong security culture across the organisation. Delivery collaboration Engage with IT Project Management and delivery teams to ensure security and compliance requirements are embedded into all projects and change initiatives. Provide security assurance and guidance throughout project lifecycles. Outcomes A strong, embedded security by default culture across IT and digital delivery functions. Reduced risk exposure through proactive monitoring, detection and response. Consistent adherence to compliance frameworks and audit requirements. A secure, efficient and user focused modern workplace experience. Improved organisational resilience against evolving and emerging cyber threats. About you You are a senior cyber security and workplace technology leader with a strong operational background and a clear understanding of governance, risk and compliance. You are comfortable operating in complex, global environments and influencing across technical and non technical stakeholders. You balance security rigor with pragmatism, ensuring controls are effective without unnecessarily impacting user experience or business delivery. You'll bring with you experience and capabilities including: Proven leadership experience in cyber security operations and/or modern workplace environments. Strong knowledge of security frameworks including ISO27001 and NIST. Hands on experience with identity, access management and endpoint security technologies. Experience leading threat detection, incident response and vulnerability management activities. Strong understanding of SaaS security, data protection and modern collaboration platforms. Experience working closely with risk, compliance and audit functions. Excellent stakeholder management and communication skills. You're good at: Embedding security into everyday operations and delivery. Translating governance and compliance requirements into practical controls. Leading teams through incident response and continuous improvement. Balancing security, usability and operational efficiency. Communicating clearly with technical teams, leadership and end users. WHAT YOU'LL GET A competitive salary and benefits package that includes 27 days holiday per year, pension contributions, private healthcare, discounted dental insurance, enhanced maternity/parental leave, plus a whole host of others including: Cultural stimulation allowance - £250 per person per year Half days off before bank holidays Emergency care days for dependants Up to 5 days volunteering leave per year to work for a registered charity Up to 10 days special emergency leave per year Season Ticket loan Payroll Giving Scheme Thursday drinks to unwind and socialize An annual Summer and Christmas party Our commitment to Diversity and Inclusion sees us offer inclusive bank holidays We also offer learning opportunities around D&I, targeted mentoring programmes and the opportunity to participate in several active Employee Led Networks and associated events. Finally, this role will be supported with all the necessary personal development required to set someone up for success. ABOUT M&C SAATCHI GROUP M&C Saatchi Group is a creative company that connects specialist expertise, fuelled by data, technology, and culture, to help clients navigate, create, and lead meaningful change. The Group operates across five core divisions: Connected Creativity; Passion Marketing; Global & Social Issues; Brand, Experience & Innovation; and Performance Media. Headquartered in London, operations span 23 countries with major hubs in the UK, Europe, US, Middle East & Africa, Asia and Australia. M&C Saatchi Group's two principles, Diversity of Thought and Brutal Simplicity of Thought, guide how they build teams and solve problems. M&C Saatchi Group is an Equal Opportunity Employer which does not discriminate, celebrates diversity and bases all hiring and promotion decisions solely on talent and capability, without regard for any personal characteristics. All employee information is kept confidential according to General Data Protection Regulation (GDPR).
Apr 15, 2026
Full time
We are seeking an experienced Head of Cyber Security and Productivity Solutions to lead the protection of the company's information, systems and users across all global environments. This senior leadership role is responsible for embedding security by default across every layer of technology, ensuring that security controls are not only documented but consistently applied and operationally effective. The role owns information security operations and modern workplace services, spanning identity and access management, endpoint security, data protection, threat detection, incident response and compliance monitoring. Operating across a complex, global technology estate, the Head of Cyber Security and Modern Workplace Operations ensures alignment with recognised governance and control frameworks, including ISO27001, NIST 800-53, NIST 800-171, Essential 8 and Cyber Essentials Plus. This role acts as the operational bridge between IT, Risk and Compliance, ensuring that security and compliance requirements are embedded into day-to-day operations and technology delivery. It works closely with Technical Operations to ensure infrastructure resilience and with Service Operations to support rapid containment, investigation and root cause analysis of security-related incidents. In addition, the role leads the Modern Workplace domain, ensuring that end-user devices, collaboration tools and SaaS platforms are secure, well governed and deliver a high-quality user experience. Key Responsibilities Cyber security operations leadership Lead information security operations across all global environments. Embed a security by default approach across infrastructure, platforms and digital services. Ensure security controls are operationally effective and aligned with business needs. Manage the relationship with Managed Service Security Partners (MSSP). Governance, risk and compliance Own compliance alignment with ISO27001, NIST 800-53, NIST 800-171, CMMC, Essential 8, DISP and Cyber Essentials Plus. Ensure ongoing audit readiness through proactive monitoring, evidence collection and control validation. Act as the operational interface between IT, Risk and Compliance functions. Identity, access and endpoint security Own identity and access management standards, including multifactor authentication and conditional access. Lead endpoint security and management, including configuration, policy enforcement and lifecycle management using platforms such as Intune and Defender. Ensure consistent application of security standards across all user devices and environments. Threat detection, monitoring and incident response Oversee continuous monitoring, threat detection and security event management. Lead incident response readiness, coordination and post-incident analysis. Work closely with Service Operations to ensure rapid containment and effective remediation of security incidents. Vulnerability and patch management Coordinate vulnerability identification, prioritisation and remediation across infrastructure, platforms and endpoints. Ensure effective patch management processes are in place and aligned with risk based priorities. Modern workplace operations Lead the secure design, configuration and lifecycle management of the modern workplace environment. Ensure communication and collaboration tools are secure, compliant and user focused. Balance security controls with usability and productivity. Policy, configuration and audit readiness Ensure security configurations, policies and standards are clearly defined, enforced and monitored. Maintain audit readiness through strong documentation, reporting and control assurance. User awareness and behavioural security Lead user awareness and behavioural security training programmes. Promote secure working practices and a strong security culture across the organisation. Delivery collaboration Engage with IT Project Management and delivery teams to ensure security and compliance requirements are embedded into all projects and change initiatives. Provide security assurance and guidance throughout project lifecycles. Outcomes A strong, embedded security by default culture across IT and digital delivery functions. Reduced risk exposure through proactive monitoring, detection and response. Consistent adherence to compliance frameworks and audit requirements. A secure, efficient and user focused modern workplace experience. Improved organisational resilience against evolving and emerging cyber threats. About you You are a senior cyber security and workplace technology leader with a strong operational background and a clear understanding of governance, risk and compliance. You are comfortable operating in complex, global environments and influencing across technical and non technical stakeholders. You balance security rigor with pragmatism, ensuring controls are effective without unnecessarily impacting user experience or business delivery. You'll bring with you experience and capabilities including: Proven leadership experience in cyber security operations and/or modern workplace environments. Strong knowledge of security frameworks including ISO27001 and NIST. Hands on experience with identity, access management and endpoint security technologies. Experience leading threat detection, incident response and vulnerability management activities. Strong understanding of SaaS security, data protection and modern collaboration platforms. Experience working closely with risk, compliance and audit functions. Excellent stakeholder management and communication skills. You're good at: Embedding security into everyday operations and delivery. Translating governance and compliance requirements into practical controls. Leading teams through incident response and continuous improvement. Balancing security, usability and operational efficiency. Communicating clearly with technical teams, leadership and end users. WHAT YOU'LL GET A competitive salary and benefits package that includes 27 days holiday per year, pension contributions, private healthcare, discounted dental insurance, enhanced maternity/parental leave, plus a whole host of others including: Cultural stimulation allowance - £250 per person per year Half days off before bank holidays Emergency care days for dependants Up to 5 days volunteering leave per year to work for a registered charity Up to 10 days special emergency leave per year Season Ticket loan Payroll Giving Scheme Thursday drinks to unwind and socialize An annual Summer and Christmas party Our commitment to Diversity and Inclusion sees us offer inclusive bank holidays We also offer learning opportunities around D&I, targeted mentoring programmes and the opportunity to participate in several active Employee Led Networks and associated events. Finally, this role will be supported with all the necessary personal development required to set someone up for success. ABOUT M&C SAATCHI GROUP M&C Saatchi Group is a creative company that connects specialist expertise, fuelled by data, technology, and culture, to help clients navigate, create, and lead meaningful change. The Group operates across five core divisions: Connected Creativity; Passion Marketing; Global & Social Issues; Brand, Experience & Innovation; and Performance Media. Headquartered in London, operations span 23 countries with major hubs in the UK, Europe, US, Middle East & Africa, Asia and Australia. M&C Saatchi Group's two principles, Diversity of Thought and Brutal Simplicity of Thought, guide how they build teams and solve problems. M&C Saatchi Group is an Equal Opportunity Employer which does not discriminate, celebrates diversity and bases all hiring and promotion decisions solely on talent and capability, without regard for any personal characteristics. All employee information is kept confidential according to General Data Protection Regulation (GDPR).
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
Apr 08, 2026
Full time
We are looking to hire a new role and bring someone in as our Head of Product Security, a key leadership role within our Information Security team. In this role you will shape how Our Future Health builds secure, trusted products at national scale. You'll lead the security engineering and architecture functions, ensuring they provide clear and pragmatic guidance to product, engineering, and wider technical teams. Your work centres on embedding secure by design thinking, strengthening how the organisation understands and manages risk, and helping teams see security as an enabler that supports delivery rather than slowing it down. You'll also contribute hands on technical input to complex architectural decisions where your expertise adds real value. Alongside this strategic impact, you'll manage and develop a growing team, ensuring smooth day to day operations and a culture of continuous improvement. The role needs empathetic people leadership, exceptional stakeholder management, and the ability to influence across a fast moving, agile environment. With an engineering background and solid security architecture experience, you'll bring the technical credibility and collaborative approach needed to guide teams, shape priorities, and drive the future direction of product security. At Our Future Health, our mission is to transform the prevention,detectionand treatment of conditions such as dementia, cancer, diabetes, heart disease and stroke. We're looking for people to join us on our journey. If you're looking for a new challenge where you can contribute to helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence. Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance. Serving as the primary contact for security consultancy, delegating work across the team as needed. Overseeing security architecture and engineering for our cloud native (Azure) production and corporate platforms. Driving continuous improvement, prioritising enhancements and maturing operational documentation. Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect. Coaching and mentoring team members across all security disciplines. Advising product, engineering, and data squads on embedding security into their work and processes. Communicating security risks, threats, and requirements to both technical and non technical colleagues. Promoting security standardisation and consistency across platforms. Collaborating with technical and data architects on broader architectural decisions. Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities. What you won't be doing Working in a siloed environment with no freedom to make decisions. Working in a place where you can't see the impact your expertise makes. To succeed in this role you will be able to demonstrate some of the following skills and experience: Proven ability to manage and develop high performing security teams while fostering a collaborative, people centred environment. Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience. Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development. Experience designing secure cloud native architectures at both conceptual and detailed technical levels. Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview. An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging. Advanced knowledge of security risk management and threat modelling. Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management. Knowledge of modern cloud platforms, particularly Azure. Awareness of ISO 27001 and other widely used security standards. Comfortable working with Infrastructure as Code, ideally including Terraform. Experience working in Agile environments. The ability to communicate clearly between technical and non technical teams. Comfortable operating in a fast paced, small team environment. Relevant professional certifications. Salary from £110,000 per annum. Generous Pension Scheme - We invest in your future with employer contributions of up to 12%. 30 Days Holiday + Bank Holidays - Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you. Enhanced Parental Leave - Supporting you during life's biggest moments. Cycle to Work Scheme - Save 25-39% on a new bike and accessories through salary sacrifice. Home & Tech Savings - Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice £1,000 Employee Referral Bonus - Know someone amazing? Get rewarded for bringing them on board! Wellbeing Support - Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family. A Great Place to Work - We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements. Join us - let's prevent disease together. At Our Future Health, we recognise the importance of having a diverse workforce and ensuring that all candidates, regardless of their background, have equitable access to our application process. We proactively encourage applicants who identify as having a disability, neurodiversity, or long-term health conditions to let us know if they require any reasonable adjustments as part of their application process. If you do require any reasonable adjustments, please email us at
