• 19/05/26
• East Midlands, Derbyshire
• £90k - 100k per year
• Permanent
• Cyber Security and InfoSec
• Full time

Director of Information Security Operations | Midlands

Hybrid working - two to three days per week in the office

£90,000 to £100,000 plus benefits

We are working with a well established and growing professional services organisation to appoint a Director of Information Security Operations. This is a pivotal leadership role for an individual who can operate at both a strategic and practical level, shaping direction while ensuring that controls, frameworks, and governance are fully embedded across the business.

This is an opportunity to join a business where security is taken seriously and where the successful individual will be empowered to influence at a senior level and drive meaningful change.

The Role

You will be responsible for translating information security strategy into effective delivery across the organisation. Working closely with senior leadership and business units, you will ensure that risk is understood, owned, and managed in a way that supports commercial decision making.

This role requires a balance of strategic thinking and hands on leadership, ensuring that frameworks and controls are not only well designed but are consistently applied and understood by the wider business.

Key Responsibilities

• Lead the development and ongoing maturity of the organisation’s security operating model
• Own and enhance the security control framework, aligned to recognised standards such as ISO or NIST
• Drive enterprise wide risk management processes, ensuring clear visibility and accountability
• Oversee the implementation and effectiveness of core security controls across technology and business functions
• Act as a trusted advisor to senior stakeholders, translating technical risk into clear and practical business decisions
• Empower business unit leaders to take ownership of risk within defined frameworks
• Support audit, compliance, and assurance activities, ensuring strong and consistent outcomes
• Contribute to organisational resilience, including incident response and business continuity
• Build a strong security culture through engagement, communication, and leadership

About You

You will be operating at Head of or Director level within information security, risk, or governance and will bring a strong track record of delivering both strategy and operational improvement.

You will have deep experience of security frameworks, controls, and governance, combined with the credibility to engage and influence at senior level. Just as importantly, you will be able to bring people with you, ensuring that security is seen as a business enabler rather than a barrier.

You will be a clear communicator who can simplify complex concepts and enable confident decision making across non technical stakeholders.

Relevant certifications such as CISSP or CISM would be advantageous but are not essential for the right individual.

At Xpertise, we keep things human, your application will always be reviewed by a real person. We do not rely on AI or automated screening tools. Every candidate receives fair, considered attention from our team.