Information Security Solutions
The Role Role Summary As the strategic architect of the Group s security services, the Head of Security Services shapes and delivers a unified vision for cyber security across a global, federated enterprise and 85+ businesses grouped into 10 divisions. Reporting into the Group Chief Information Security Officer (CISO), this leader is responsible for overseeing day-to-day operational cyber security capabilities, ensuring robust, efficient, and coordinated first and second line security operations that protect the Group s people, systems, and data from cyber-attacks. By setting the direction for security services, championing the adoption of centralised capabilities, and driving continuous innovation, this role ensures that the security operations are robust, adaptive, and future-ready. With oversight of daily technical security functions and a relentless focus on operational excellence, the Head of Security Services builds and empowers high-performing teams to deliver 24/7 threat detection, rapid incident response, and proactive risk management. This includes ownership of security controls, security testing, tech assurance and vulnerability and threat management, and incident response across the organisation. Collaboration is at the heart of this position. By working across the GCS Leadership Team, with business and technology stakeholders, and with industry experts to align strategy, share intelligence, and drive a single, cohesive approach to security services, this leader ensures the Group not only meets but sets the benchmark for security services in a dynamic digital world. Role Responsibilities/Accountabilities Key Responsibilities: Strategic Leadership & Vision • Establish a costed strategic vision for security services across the Group s global, federated enterprise. • Evangelist for adoption of central services and drives alignment to a single security services vision. • Define, maintain, and regularly review the security services service catalogue and SLAs, clearly articulating what good looks like. • Integrates AI and modernises security operations using latest technologies. • Ensure security operations support organisational resilience and disaster recovery objectives. • Collaborate across verticals with the GCS Leadership Team. Operations & Service Delivery • Oversee daily operations of technical security functions, working collaboratively with the SOCs to provide 24/7 visibility and threat detection ensuring services are resilient, risk-aware, and aligned with business needs. • Regularly review and modernise SOC processes, technologies, and talent. • Partner with MSSPs and build solid vendor relationships to deliver the security strategy. • Define and collect metrics/KPIs, regularly reporting to leadership on SOC events/incidents and overall effectiveness. • Review metrics at a group level and adjust services strategy accordingly. • Management of the security technology stack and continuous improvement of services. Incident Response & Threat Management • Serve as incident commander (including on-call), leading cyber incident response activities. • Lead on cyber incident response activities and contributing to incident management activities by advising on incident identification, assessment, classification, escalation, investigation, mitigation, monitoring and reporting to help ensure cyber incidents are managed in a timely and effectively manner to limit impact. • Drive the development of threat management, threat modelling and identification of new threat vectors by keeping up to date with industry activity and methodology, to help ensure key assets are protected. • Lead threat hunts to proactively discover potential compromises. • Lead and coordinate red teaming, penetration testing, and exercising to assess and enhance the quality of services delivered by SOCs. • Red/purple teaming to ensure standard of services testing quality of services delivered by various SOCs. • Exercise incident response capabilities. Threat Intelligence & Tech Assurance and Vulnerability Management • Drive the development of threat management, threat modelling, and identification of new threat vectors. • Maintain up-to-date awareness of cyber threat intelligence and emerging attack vectors, always evaluating the materiality of the threat. • Liaise with industry experts and update strategy in line with the threat landscape. • Lead a threat-led, risk-based vulnerability management programme, ensuring timely remediation in collaboration with IT. • Own insider threat and data loss prevention (DLP) initiatives. • Lead the emergency patching vulnerability management programme ensuring threat-led and risk-based prioritisation, along with collaboration with IT for timely remediation. • Own and manage key security controls ensuring they are deployed, tuned, and monitored effectively across cloud and on-premise assets, along with managing the vendors that are responsible for supporting the Group. Team Leadership & Performance • Lead a high-performing team of cyber and project professionals, driving strategy, innovation, and continuous improvement across protection capabilities including SOC, Security Engineering, Technical Assurance and Vulnerability Management. • Manage team performance and cost base, making informed financial decisions and supporting portfolio-level investment planning. • Provide technical leadership and act as a subject matter expert on information security best practices. Collaboration & Stakeholder Engagement • Collaborate across the GCS Leadership Team and with cross-functional stakeholders. • Work with Head of Manufacturing / OT security to align security operations elements in manufacturing. • Collaborate with cross-functional stakeholders to assess and mitigate risk, while maintaining a forward-looking roadmap for cyber capabilities. Experience, Knowledge, Skills & Attributes Essential • A certification such as CISSP CISM, GIAC, or equivalent. University Degree qualified in an engineering discipline ideally with Cyber Security Engineering, Computer Science, Information Technology, or Computer and Electronics engineering. • Prior experience of building security teams and a global delivery operations support model. • Demonstrable experience of building and running a technical assurance function. • Demonstrable knowledge of industry standards such as NIST and ISO27001. Knowledge of relevant regulations such as GDPR, NIS2, and EU AI. • Exceptional analytical and decision-making abilities during BAU and incidents. • Experience in leading cybersecurity incidents, implementing response procedures, and driving continuous improvements, and optimising security tools and technologies to enhance operational efficiency. • Hands-on experience in threat detection and prevention, including expertise in SIEM, EDR, firewall management, or similar security technologies. • Ability to build relationships and engage with all levels of management, communicating complex technical issues to a range of audiences. • Experience of managing service level agreements, commercial engagements, and supporting procurement with contract negotiations. • Demonstrable experience in designing, enhancing, and implementing security processes and policies. • Strong project management and leadership skills with the ability to prioritise both operational and project demands. Desirable • Experience of operating within federated environments or within an IT Service Management Provider / Consultancy • Experience managing external supplier relationships to secure the best value and service
The Role Role Summary As the strategic architect of the Group s security services, the Head of Security Services shapes and delivers a unified vision for cyber security across a global, federated enterprise and 85+ businesses grouped into 10 divisions. Reporting into the Group Chief Information Security Officer (CISO), this leader is responsible for overseeing day-to-day operational cyber security capabilities, ensuring robust, efficient, and coordinated first and second line security operations that protect the Group s people, systems, and data from cyber-attacks. By setting the direction for security services, championing the adoption of centralised capabilities, and driving continuous innovation, this role ensures that the security operations are robust, adaptive, and future-ready. With oversight of daily technical security functions and a relentless focus on operational excellence, the Head of Security Services builds and empowers high-performing teams to deliver 24/7 threat detection, rapid incident response, and proactive risk management. This includes ownership of security controls, security testing, tech assurance and vulnerability and threat management, and incident response across the organisation. Collaboration is at the heart of this position. By working across the GCS Leadership Team, with business and technology stakeholders, and with industry experts to align strategy, share intelligence, and drive a single, cohesive approach to security services, this leader ensures the Group not only meets but sets the benchmark for security services in a dynamic digital world. Role Responsibilities/Accountabilities Key Responsibilities: Strategic Leadership & Vision • Establish a costed strategic vision for security services across the Group s global, federated enterprise. • Evangelist for adoption of central services and drives alignment to a single security services vision. • Define, maintain, and regularly review the security services service catalogue and SLAs, clearly articulating what good looks like. • Integrates AI and modernises security operations using latest technologies. • Ensure security operations support organisational resilience and disaster recovery objectives. • Collaborate across verticals with the GCS Leadership Team. Operations & Service Delivery • Oversee daily operations of technical security functions, working collaboratively with the SOCs to provide 24/7 visibility and threat detection ensuring services are resilient, risk-aware, and aligned with business needs. • Regularly review and modernise SOC processes, technologies, and talent. • Partner with MSSPs and build solid vendor relationships to deliver the security strategy. • Define and collect metrics/KPIs, regularly reporting to leadership on SOC events/incidents and overall effectiveness. • Review metrics at a group level and adjust services strategy accordingly. • Management of the security technology stack and continuous improvement of services. Incident Response & Threat Management • Serve as incident commander (including on-call), leading cyber incident response activities. • Lead on cyber incident response activities and contributing to incident management activities by advising on incident identification, assessment, classification, escalation, investigation, mitigation, monitoring and reporting to help ensure cyber incidents are managed in a timely and effectively manner to limit impact. • Drive the development of threat management, threat modelling and identification of new threat vectors by keeping up to date with industry activity and methodology, to help ensure key assets are protected. • Lead threat hunts to proactively discover potential compromises. • Lead and coordinate red teaming, penetration testing, and exercising to assess and enhance the quality of services delivered by SOCs. • Red/purple teaming to ensure standard of services testing quality of services delivered by various SOCs. • Exercise incident response capabilities. Threat Intelligence & Tech Assurance and Vulnerability Management • Drive the development of threat management, threat modelling, and identification of new threat vectors. • Maintain up-to-date awareness of cyber threat intelligence and emerging attack vectors, always evaluating the materiality of the threat. • Liaise with industry experts and update strategy in line with the threat landscape. • Lead a threat-led, risk-based vulnerability management programme, ensuring timely remediation in collaboration with IT. • Own insider threat and data loss prevention (DLP) initiatives. • Lead the emergency patching vulnerability management programme ensuring threat-led and risk-based prioritisation, along with collaboration with IT for timely remediation. • Own and manage key security controls ensuring they are deployed, tuned, and monitored effectively across cloud and on-premise assets, along with managing the vendors that are responsible for supporting the Group. Team Leadership & Performance • Lead a high-performing team of cyber and project professionals, driving strategy, innovation, and continuous improvement across protection capabilities including SOC, Security Engineering, Technical Assurance and Vulnerability Management. • Manage team performance and cost base, making informed financial decisions and supporting portfolio-level investment planning. • Provide technical leadership and act as a subject matter expert on information security best practices. Collaboration & Stakeholder Engagement • Collaborate across the GCS Leadership Team and with cross-functional stakeholders. • Work with Head of Manufacturing / OT security to align security operations elements in manufacturing. • Collaborate with cross-functional stakeholders to assess and mitigate risk, while maintaining a forward-looking roadmap for cyber capabilities. Experience, Knowledge, Skills & Attributes Essential • A certification such as CISSP CISM, GIAC, or equivalent. University Degree qualified in an engineering discipline ideally with Cyber Security Engineering, Computer Science, Information Technology, or Computer and Electronics engineering. • Prior experience of building security teams and a global delivery operations support model. • Demonstrable experience of building and running a technical assurance function. • Demonstrable knowledge of industry standards such as NIST and ISO27001. Knowledge of relevant regulations such as GDPR, NIS2, and EU AI. • Exceptional analytical and decision-making abilities during BAU and incidents. • Experience in leading cybersecurity incidents, implementing response procedures, and driving continuous improvements, and optimising security tools and technologies to enhance operational efficiency. • Hands-on experience in threat detection and prevention, including expertise in SIEM, EDR, firewall management, or similar security technologies. • Ability to build relationships and engage with all levels of management, communicating complex technical issues to a range of audiences. • Experience of managing service level agreements, commercial engagements, and supporting procurement with contract negotiations. • Demonstrable experience in designing, enhancing, and implementing security processes and policies. • Strong project management and leadership skills with the ability to prioritise both operational and project demands. Desirable • Experience of operating within federated environments or within an IT Service Management Provider / Consultancy • Experience managing external supplier relationships to secure the best value and service
NTT Data Ltd
You'll be joining the 6th largest IT Service Provider, present in more than 50 countries. From our roots in Japan, NTT DATA's mission is to facilitate business change and technology transformation across many industries for a better future for our business, people and community. Some of the projects we have supported include the digitising of The Open golf tournament and applying Formula 1 technology to support medical staff at University Hospitals Leicester. Everything we do is underpinned by our core values of 'Clients First', 'Teamwork' and 'Foresight' and we achieve these by putting people first. We support and celebrate our differences and preferences, these are what makes us unique. Some of our initiatives, collectively known as "DO Diversity", aim to create a space for us to learn and get involved in building a truly diverse environment. Our Culture & Ethnicity Network gives our colleagues a platform to share their various backgrounds; Our NINGEN programme allows the new generation of NTT DATA employees around the world to connect and shape the future of our organisation and the "City Gives Back" allows us to support our local community that has been affected by the COVID-19 pandemic...and much more! NTT DATA UK is looking for a Lead Engineer/Application Architect to join our growing practise specifically focussed on the Law Enforcement/Security services domain. The role requires a hands-on technical leader with excellent customer facing skills and ability to influence business, architecture and technical stakeholders to manage and deliver successful solutions. You will be providing technical leadership and ownership of projects, guiding the client in shaping their ideas by applying your technical knowledge and experience primarily in cloud native technologies and agile delivery. You will coordinate and lead teams of Application and DevOps Engineers and continually drive forward quality, standards, tooling and development practices. You will be primarily responsible for: Being a hands-on contributor as well as providing technical leadership and support to the team(s) in order to manage and deliver successful solutions. Collaborating with other technology teams and technology governance functions to resolve dependencies e.g. interfaces, infrastructure, security. Designing and delivering complex full stack digital products encompassing a rich variety of technologies and using a mixture of agile and planned methods. Being a trusted technical advisor to customers and solving complex technical challenges, and establishing credibility and deep relationships with senior technical and business individuals within the customers' organisation, navigating both complex organisation / programme structures. Documenting and demonstrating solutions by writing documentation, creating and leading customer presentations, creating and maintaining solution / data models / interface specifications, reviewing low level designs and help solve technical challenges. Ensuring the implementation of agreed architecture and infrastructure within a complex existing client landscape (with pre-defined services and constraints). Owning delivery methodology, development practice, quality assurance process, etc. within the team(s) you are responsible for. Ensuring solution security compliance and supporting penetration testing assurance exercises in a high risk / trust landscape. In order to be successful in this role, you will have proven experience in and a solid understanding of most of the following: Experience with delivering integration micro-service patterns in multiple technologies but at least Java Spring Boot in a containerised environment on AWS Experience of working with SQL and NoSQL Cloud DBs and search services such as Elastic / Open Search Experience working with streaming data (e.g. Apache Kafka) and AWS native messaging/streaming features Strong knowledge of the entire software development lifecycle and experience in incremental delivery of software products. Systems design experience in a high risk / assurance environment, with the ability to architect or explain complex systems interactions including data flows, common interfaces, APIs and other methods, along with broad architecture skills, covering application, infrastructure, data and integration. Experience in leading software delivery lifecycles (both agile and more traditional forms), including: DevOps platforms CI / CD services and approaches Automated testing Experience with DevOps tooling and application hosting services such as: Jenkins, Drone, AWS CodeCommit / Pipeline / Deploy Atlassian stack, Azure DevOpsDocker / Kubernetes / Function as a Service deployments Leading design, delivery and test best practise, covering: Test strategies (contract led, automation, etc) Security assurance (ITHC, penetration testing) ITIL Service Management integration Cyber security and insider threat auditing Strong appreciation of front end delivery concerns including what well architected front end solutions look like (SPA, mobile and traditional MVC) preferably with knowledge of a FE framework such as React You will be comfortable working with and influencing varied seniority levels both internally and with clients; and training and educating at all levels. Education and Experience SC Cleared or Residency in the UK for the past 5 years (ideally British Passport Holder) Senior Developer experience Technical leadership experience Knowledge of Law Enforcement domain or security services A significant number of large scale, whole lifecycle, project experience Proven and successful leadership and delivery Our team believes in hard work. We celebrate each other's success and are always honest with each other to ensure we grow together. We aim to build a strong professional community where each individual can mentor others and be mentored, and can grow professionally through training and support to reach their career goals. Our focus on clients, teamwork and foresight forms our DNA and we are looking for someone who shares and embodies these core values, leading by example. To support your hard work and dedication, we will offer you the following: 25 days of holidays, with the possibility to buy or sell 5 days within your first month A MacBook or laptop The opportunity, as we grow, to experiment within new industries and technologies in both Private and Public Sectors, including Insurance, Automotive, Financial, Government and more. An online training platform with 3000+ courses, accessible from everywhere, to sharpen your skills Support for training and upskilling Industry leading employer pension contributions ...And much more!
You'll be joining the 6th largest IT Service Provider, present in more than 50 countries. From our roots in Japan, NTT DATA's mission is to facilitate business change and technology transformation across many industries for a better future for our business, people and community. Some of the projects we have supported include the digitising of The Open golf tournament and applying Formula 1 technology to support medical staff at University Hospitals Leicester. Everything we do is underpinned by our core values of 'Clients First', 'Teamwork' and 'Foresight' and we achieve these by putting people first. We support and celebrate our differences and preferences, these are what makes us unique. Some of our initiatives, collectively known as "DO Diversity", aim to create a space for us to learn and get involved in building a truly diverse environment. Our Culture & Ethnicity Network gives our colleagues a platform to share their various backgrounds; Our NINGEN programme allows the new generation of NTT DATA employees around the world to connect and shape the future of our organisation and the "City Gives Back" allows us to support our local community that has been affected by the COVID-19 pandemic...and much more! NTT DATA UK is looking for a Lead Engineer/Application Architect to join our growing practise specifically focussed on the Law Enforcement/Security services domain. The role requires a hands-on technical leader with excellent customer facing skills and ability to influence business, architecture and technical stakeholders to manage and deliver successful solutions. You will be providing technical leadership and ownership of projects, guiding the client in shaping their ideas by applying your technical knowledge and experience primarily in cloud native technologies and agile delivery. You will coordinate and lead teams of Application and DevOps Engineers and continually drive forward quality, standards, tooling and development practices. You will be primarily responsible for: Being a hands-on contributor as well as providing technical leadership and support to the team(s) in order to manage and deliver successful solutions. Collaborating with other technology teams and technology governance functions to resolve dependencies e.g. interfaces, infrastructure, security. Designing and delivering complex full stack digital products encompassing a rich variety of technologies and using a mixture of agile and planned methods. Being a trusted technical advisor to customers and solving complex technical challenges, and establishing credibility and deep relationships with senior technical and business individuals within the customers' organisation, navigating both complex organisation / programme structures. Documenting and demonstrating solutions by writing documentation, creating and leading customer presentations, creating and maintaining solution / data models / interface specifications, reviewing low level designs and help solve technical challenges. Ensuring the implementation of agreed architecture and infrastructure within a complex existing client landscape (with pre-defined services and constraints). Owning delivery methodology, development practice, quality assurance process, etc. within the team(s) you are responsible for. Ensuring solution security compliance and supporting penetration testing assurance exercises in a high risk / trust landscape. In order to be successful in this role, you will have proven experience in and a solid understanding of most of the following: Experience with delivering integration micro-service patterns in multiple technologies but at least Java Spring Boot in a containerised environment on AWS Experience of working with SQL and NoSQL Cloud DBs and search services such as Elastic / Open Search Experience working with streaming data (e.g. Apache Kafka) and AWS native messaging/streaming features Strong knowledge of the entire software development lifecycle and experience in incremental delivery of software products. Systems design experience in a high risk / assurance environment, with the ability to architect or explain complex systems interactions including data flows, common interfaces, APIs and other methods, along with broad architecture skills, covering application, infrastructure, data and integration. Experience in leading software delivery lifecycles (both agile and more traditional forms), including: DevOps platforms CI / CD services and approaches Automated testing Experience with DevOps tooling and application hosting services such as: Jenkins, Drone, AWS CodeCommit / Pipeline / Deploy Atlassian stack, Azure DevOpsDocker / Kubernetes / Function as a Service deployments Leading design, delivery and test best practise, covering: Test strategies (contract led, automation, etc) Security assurance (ITHC, penetration testing) ITIL Service Management integration Cyber security and insider threat auditing Strong appreciation of front end delivery concerns including what well architected front end solutions look like (SPA, mobile and traditional MVC) preferably with knowledge of a FE framework such as React You will be comfortable working with and influencing varied seniority levels both internally and with clients; and training and educating at all levels. Education and Experience SC Cleared or Residency in the UK for the past 5 years (ideally British Passport Holder) Senior Developer experience Technical leadership experience Knowledge of Law Enforcement domain or security services A significant number of large scale, whole lifecycle, project experience Proven and successful leadership and delivery Our team believes in hard work. We celebrate each other's success and are always honest with each other to ensure we grow together. We aim to build a strong professional community where each individual can mentor others and be mentored, and can grow professionally through training and support to reach their career goals. Our focus on clients, teamwork and foresight forms our DNA and we are looking for someone who shares and embodies these core values, leading by example. To support your hard work and dedication, we will offer you the following: 25 days of holidays, with the possibility to buy or sell 5 days within your first month A MacBook or laptop The opportunity, as we grow, to experiment within new industries and technologies in both Private and Public Sectors, including Insurance, Automotive, Financial, Government and more. An online training platform with 3000+ courses, accessible from everywhere, to sharpen your skills Support for training and upskilling Industry leading employer pension contributions ...And much more!
