InfoSec Lead

CompanyLa Fosse

LocationLondon Area, United Kingdom

Posted At12/2/2025

UK Visa Sponsorship Analytics

Occupation Type

Child and early years officers

Occupation Code Skill LevelMedium Skilled

Sponsorship EligibilityIneligible for Sponsorship

Above analytics are generated algorithmically based on job titles and may not always be the same as the company's job classification. You can also check detailed occupation eligibility, and salary criteria on our UK Visa Eligible Occupations & Salary Thresholds page.

Disclaimer: Hunt UK Visa Sponsors aggregates job listings from publicly available sources, such as search engines, to assist with your job hunting. We do not claim affiliation with La Fosse. For the most up-to-date job details, please visit the official website by clicking "Apply Now."

Description

InfoSec lead

We are partnering with a UK-based technology company specialising in secure, mission-critical software platforms for government and defence. They're looking to bring in the first Information Security hire who will own security across the board and will be joining at a pivotal point in the company’s growth where you will have the opportunity to shape and mature security strategy from the ground up

Your future role

You will collaborate closely with engineers and developers to embed secure-by-design principles within their engineering culture while partnering with the business to ensure AI-driven initiatives are implemented securely. You will work closely with compliance experts across the organisation to ensure alignment with ISO and NIST standards.

1. Security Strategy & Governance

Build and lead a security programme aligned with business and compliance goals.
Define and enforce company-wide security policies and standards.
Identify risks, manage the risk register, and drive remediation.
Guide stakeholders (technical and non-technical) on security risks, controls, and system design decisions.

2. Security Engineering & Secure Development

Champion secure SDLC practices with DevOps and engineering teams.
Lead security programmes across endpoints, cloud, and customer facing products.
Continuously improve security monitoring, tools, and incident readiness.

3. Incident Management & Operational Security

Take ownership of security incidents as the primary point of contact.
Coordinate response across internal teams, MSSP partners, and the SOC

4. Assurance, Testing & Third-Party Security

Oversee third-party penetration tests and security assessments, track findings, and verify remediation.

Your Present Skillset

• Strong engineering experience, preferably in cloud or application security.

• Expertise in incident response, SOC operations, and working with MSSPs

•Deep understanding of cloud-native environments and infrastructure-as-code.

• Experienced in defining and implementing security policies and governance frameworks.

Nice to have

•UK Security Clearance (SC or DV), active or previously held

• Preferred certifications: CISSP, CISM, or CISA.