Cyber & Information Security

We are seeking a strategic, forward-thinking Head of Cyber & Information Security to lead the design, implementation, and governance of enterprise-wide information security frameworks across Webskitters.

This senior leadership role will be responsible for defining and executing the organisation’s cybersecurity, data protection, and compliance strategy—ensuring that every platform, process, and client engagement adheres to the highest global security standards.

The successful candidate will combine deep technical expertise with business acumen, leading a team of security professionals to safeguard information assets, protect client data, and maintain resilience against evolving cyber threats. Experience in service-based organisations, where multi-client engagement and compliance are paramount, is essential

Required Skills & Experience

Essential

• Minimum 8–10 years of progressive experience in Cybersecurity, Information Security, or IT Risk Management, with 3+ years in a leadership role.
• Proven experience in a service-based or consulting organisation, handling multi-client security governance and delivery.
• Deep understanding of security domains, including network security, cloud security, application security, and endpoint protection.
• Hands-on expertise in cloud security architecture, particularly in AWS (preferred), Azure, or GCP environments.
• Strong knowledge of security frameworks such as NIST, ISO 27001, CIS Controls, and SOC 2.
• Proficiency with tools like Splunk, CrowdStrike, Tenable, Qualys, SentinelOne, Fortinet, or Palo Alto.
• Demonstrated success in leading security audits, vulnerability assessments, and incident response programmes.
• Experience integrating DevSecOps practices into modern CI/CD pipelines.
• Excellent leadership, communication, and stakeholder management skills.

Desirable

• Bachelor’s or Master’s degree in Information Security, Computer Science, or related discipline.
• Professional certifications such as CISSP, CISM, CISA, CEH, or AWS Security Specialty.
• Exposure to data privacy and data security operations at scale.
• Experience designing or managing SOC functions.
• Strong understanding of risk management, forensics, and business continuity planning.
• Familiarity with security automation, SOAR platforms, and zero-trust architectures.

Key Performance Indicators (KPIs)

• Reduction in security incidents and mean time to detect/respond (MTTD/MTTR).
• Achievement and maintenance of compliance certifications (ISO 27001, SOC 2, etc.).
• Effectiveness of risk mitigation and vulnerability management programmes.
• Employee security awareness and training adoption rates.
• Client satisfaction and confidence in security governance during audits.