Group Head of Information & Cyber Security

We are working with a global leading retail group, undergoing significant digital and technology transformation, to appoint their new Group Head of Information & Cyber Security. This is a rare opportunity to shape and lead the cybersecurity agenda at scale in a complex, customer-centric environment that spans e-commerce, supply chain & physical retail and reaches millions of customers across the UK and beyond. The Opportunity As the Group Head of Information & Cyber Security, you’ll be the strategic leader and executive voice for information and cyber security across the group. Reporting into the Group CIO and working closely with the Executive Committee, you will develop and embed a modern, risk-based security strategy aligned to the business’s digital ambitions and complex technology estate. This is a high-profile, business-critical role with board visibility and accountability for protecting brand trust, customer data, operational integrity, and regulatory compliance across multiple markets. Key Responsibilities Set the security vision and lead enterprise-wide execution across digital, physical, and third-party landscapes. Advise the Board and Executive Committee on cyber risks, trends, and readiness. Inspire, mentor, build and lead a high-performing security team: threat intel, SOC, GRC, DevSecOps, and more. Embed security into our digital transformation: cloud platforms, customer data, loyalty, payments. Govern and assure compliance with regulatory frameworks including GDPR, PCI-DSS, NIS2, ISO 27001, and evolving UK/EU legislation. Manage strategic security vendor relationships, budgets, and toolsets to ensure capability, scalability, and cost-efficiency. What We’re Looking For Proven track record as Head of Information & Cyber Security | CISO in a large, customer-facing organisation—ideally within retail, e-commerce, consumer goods, or similar. Demonstrated leadership in securing digital transformation at scale (cloud migration, agile delivery, platform modernisation). Track record leading a strong and motivated security team (15) Strong technical understanding of security architecture, cloud environments (AWS/Azure/GCP), identity and access management (IAM), and data protection. Experienced in board-level stakeholder engagement and crisis/incident leadership. Strategic thinker with the ability to execute, influence, and drive change in complex, federated environments. Relevant qualifications such as CISSP, CISM, CRISC, or equivalent are highly desirable. Why Join? Be part of a major transformation journey where security is at the heart of the strategy. Influence at the highest levels in a business committed to customer trust, digital growth, and operational excellence. Work in a supportive, values-led culture with significant backing for innovation and capability building. Ready to define the security agenda for one of the UK’s most recognisable brands? Apply now or contact us for a confidential discussion.

Location: UK, GB

Posted Date: 5/4/2025