Head of Digital Risk and Security

• Competitive salary, car allowance, bonus, pension
• Based at our Stockport office (Hybrid working available)

Looking to shape the future of cyber resilience in a dynamic, national organisation?

We’re on the lookout for a forward-thinking Head of Digital Risk & Security to lead Stagecoach’s enterprise-wide information and cyber security strategy. As a senior leader, you’ll play a pivotal role in ensuring our systems, services, and data are safe, resilient, and fully aligned with regulatory and industry standards, enabling millions of journeys every year across the UK. This is a fantastic opportunity to shape how security is embedded into digital transformation at one of the UK’s most recognised public transport brands.

What you’ll be doing:

• Designing and leading a robust security strategy aligned to business goals and risk appetite
• Overseeing security governance, cyber risk frameworks, and compliance with GDPR, NIST, and other standards
• Leading risk assessments and mitigation plans across all business functions and technologies
• Building and leading a high-performing, diverse security team across governance, ops, threat intelligence and incident response
• Lead our data protection strategy, ensuring compliance, security, and the highest standards of safeguarding personal information
• Managing incident response efforts to ensure effective containment, investigation and recovery
• Partnering with Technology, People, Legal, and Operational teams to embed security into contracts, platforms and processes
• Reporting on security posture and risk to the CIO and executive leadership
• Championing employee awareness, training and a cyber-conscious culture

What we’re looking for:

• Proven senior leadership in information security within a regulated, complex organisation
• Strong knowledge of cyber threats, modern controls, standards (NIST, ISO 27001) and legal frameworks (e.g. GDPR)
• Experience delivering enterprise-wide risk governance and cyber security roadmaps
• Confidence managing third-party risk, continuity planning and incident response
• Excellent leadership, communication, and stakeholder management skills, able to influence across technical and non-technical audiences
• Ability to partner with executive leaders, delivering insight and strategic counsel
• Desirably, professional certifications such as CISSP, CISM, CISA (or equivalent)

Why join Stagecoach?

• A mission-led business focused on safety, sustainability, and innovation
• A collaborative leadership team, committed to continuous improvement
• Competitive salary and benefits, including pension, bonus potential, and hybrid working
• Opportunities to shape national-level projects and influence Board-level decisions
• A values-driven, inclusive culture where your contribution makes a real difference

Our culture

At Stagecoach, we never compromise on safety, we succeed because we’re stronger together, and we always put the customer at our core. In this role, you’ll live those values daily, promoting high standards, building inclusive teams, and helping deliver outstanding services across the UK.

Ready to lead the future of digital security at Stagecoach?

Click apply today. We can’t wait to meet you.

Stagecoach is proudly an inclusive employer, striving for a culture where everyone can be themselves and where all the differences people bring are truly appreciated. We welcome applications from all, irrespective of gender, ethnicity, race, religion, beliefs, disability, neurodiversity, sexual orientation, or age.