Head of Information and Cyber Security

We are seeking a Head of Information and Cyber Security to lead our organisation wide approach to protecting the Council and the people we serve. This is a senior, high impact leadership role for a professional who can combine technical authority with strategic influence, partnership working, and confident decision making at the highest levels.

We welcome the use of artificial intelligence as a drafting aid. However, applications must clearly evidence your own experience, judgement and decision making. Applications that rely on generic or unverifiable content are unlikely to progress. This role requires a regular onsite presence to provide visible leadership, engage with senior stakeholders, and lead during incidents.

About the role

This is a strategic leadership role. While you will bring strong technical credibility, hands on configuration or operational delivery are not the focus of this post.

As our Head of Information and Cyber Security, you will:

• Lead the development, implementation and continuous improvement of the Council's cyber security framework, aligned to our Digital, Data and AI Strategy.
• Provide clear, evidence based advice and guidance to senior leaders, Members, and corporate boards, representing Digital Services at Audit Committee, Assurance Board, Overview & Scrutiny and Cabinet.
• Shape and drive innovative approaches to information and cyber security, ensuring our systems, services and solutions are secure by design.
• Manage and inspire a multidisciplinary inhouse team and ensure effective oversight of key suppliers and partners.
• Oversee the Council's readiness for cyber incidents and personally lead the response to major technical security events, working closely with bodies such as the NCSC, LOTI and regional cyberresilience networks
• Ensure cyber security is embedded into business continuity, risk management, procurement, and major change programmes.
• Drive measurable organisational awareness and culture change, promoting secure behaviours across a diverse workforce.
• Maintain compliance with major frameworks and standards including PSN, PCIDSS, DPA, GDPR and ISO27001.
• Manage budgets, contribute to business cases and ensure value for money in all activity.

Do you have experience in Incident response?, We are looking for a candidate who brings experience of working in an environment with high public accountability, political scrutiny, legacy and modern technology estates, constrained budgets, and live service risk, delivering at pace while ensuring security and resilience.

You will have personally led complex cyber incidents through decision making, stakeholder communication, regulatory engagement, and recovery.

You will also bring:

• Demonstrable capability in cyber security risk management, security frameworks, service management and incident response at scale.
• Experience influencing senior stakeholders and communicating complex issues clearly to nontechnical audiences.
• A strong track record of leading, developing and motivating a high performing team.
• Deep knowledge of standards such as ISO27001, PCIDSS and associated regulatory frameworks.
• Experience holding suppliers to account, including challenging assurance, delivery quality, and value for money., At least one of the following (or an equivalent qualification we can independently verify):
• CISSP
• CISM
• CRISC

Leadership & behavioural qualities

We want a leader who:

• Takes responsibility with a positive, problem-solving mindset.
• Acts with openness, honesty and respect.
• Listens actively, reflects and adapts.
• Works collaboratively across boundaries to find solutions., If you are an experienced cyber security leader with the strategic vision, professional credibility and inclusive leadership style to shape Enfield's security future, we would love to hear from you.

Why it's great to work for Enfield Council:

• An excellent pension through the Local Government Pension Scheme (LGPS).
• Up to 32 days annual leave depending on grade and length of service. You will also get eight public holidays per year and an extra day off at Christmas.
• A blend of remote and office based working for most roles.
• Interest free season ticket loan repayable over three or ten months.
• Career development and learning experiences from a range of training courses and learning methods.
• Employee Assistance Programme to provide advice and counselling services. This is a free and confidential service available to staff and members of their family.
• Health and leisure discounts and tax-free bikes for work.
• 1 month's paid sabbatical for registered Social Workers working in Children's Social Care.