Director Information Security

CompanyLawrence Harvey

LocationLondon Area, United Kingdom

Posted At1/11/2026

UK Visa Sponsorship Analytics

Occupation Type

Information technology directors

Occupation Code Skill LevelHigher Skilled

Sponsorship Salary Threshold

£86,000 (£44.10 per hour)

Occupation rate applies

Above analytics are generated algorithmically based on job titles and may not always be the same as the company's job classification. You can also check detailed occupation eligibility, and salary criteria on our UK Visa Eligible Occupations & Salary Thresholds page.

Disclaimer: Hunt UK Visa Sponsors aggregates job listings from publicly available sources, such as search engines, to assist with your job hunting. We do not claim affiliation with Lawrence Harvey. For the most up-to-date job details, please visit the official website by clicking "Apply Now."

Description

Director, Information Security Risk Management

Salary - £130-150k + 40-55k Bonus + Benefits

Location – London (in office 2-3 days per week)

I’m working with a major Financial Markets firm who are hiring for a Director of Information Security Risk Management to lead the change and transformation of their Enterprise Risk Management strategy.

Working in the Enterprise and Operational Risk Management function, this role reports directly into the Chief Risk Officer, with a dotted line into the Global CISO; where you will be responsible for leading in the design and implementation of Enterprise Information Security Risk Management frameworks to identify and mitigate information security risks; with a broader scope across the entirety of the 1st and 2nd Lines of Defence.

They are looking for someone with considerable experience of driving and delivering enterprise security risk management programs within highly regulated Financial Markets and Banking organisations, who can not just set out strategy but direct the change and transformation efforts.

This is a hugely influential role within a major global Financial Markets organization, where you will be the key figurehead and have an enormous impact on how they identify and mitigate against information security risks for years to come.

Key Responsibilities

Direct and lead in the design and implementation of Enterprise Information Security Risk Management frameworks to identify and mitigate information security risks; with a broader scope across the entirety of the 1st and 2nd Lines of Defence.
Serve as the Information Security Risk Management focal point across the organization, acting as a trusted advisor whilst effectively challenging on the evolving Information Security, Technology and Data risk landscape.
Drive a risk management culture across the organization of engagement, accountability and teamwork.
Lead and develop a team of Information Security Risk Management SMEs from Analyst up to Director level, fostering a high-performance and collaborative culture.

Key Requirements

Significant and demonstrable experience building and leading risk management programs across 1st and 2nd line of defence across Security, Technology and Data.

Experience working in a highly regulated financial markets environment where the need for continuous availability and low latency, whilst ensuring highest levels of security is paramount.

In-depth knowledge of key security risk management frameworks, in particular NIST Cyber Security Framework and Cyber Risk Institute CRI profile, are essential.

10+ years’ experience dedicated to information security risk management, governance and operations.

Relevant and current certifications (CISSP, CRISC, CISM, etc) highly desirable.