Head of Cyber Security (IT, OT, Risk & Governance)

The Opportunity

We are seeking an experienced Head of Cyber Security to lead and uplift cyber security, risk and governance across a large industrial environment. This role offers the chance to own the cyber function end-to-end in a pragmatic, delivery-focused business where cyber must enable operations rather than block them.

Reporting into the CIO, with a strong dotted-line relationship into infrastructure and operations leadership, this role is critical in balancing operational realities, risk appetite and cyber maturity, particularly across IT and OT environments.

This is a highly visible leadership role and a key conduit between the local business and a broader national business, contributing to the uplift of cyber capability at scale.

Why This Role

• Own and shape the cyber security function in a business that wants to improve and invest pragmatically.
• Lead a capable, close-knit team with room to uplift maturity and engagement.
• Influence both operations and group cyber strategy within a large, well-known organisation.

Key Responsibilities

• Own and execute the cyber security strategy, aligned to business priorities and risk appetite.
• Act as a trusted advisor to technology, operations and executive stakeholders, ensuring cyber enables rather than impedes the business, translating cyber risk into clear commercial and operational outcomes.
• Act as the primary cyber conduit between the cyber team and the broader group, the third parties.
• Oversee security operations delivered through managed services (SOC) and internal technical teams.
• Ensure effective incident response, escalation and operational readiness across IT and OT.
• Champion continuous improvement across cyber risk management and compliance
• Provide clear reporting and metrics to senior leadership.
• Lead and develop a team of approximately 8 cyber professionals, including senior specialists and early-career talent.

About You

You are a commercially astute cyber leader who understands how to operate in industrial environments where budgets are tight, operations are critical, and cyber must be pragmatic.

You don’t need to be deeply technical day-to-day - instead, you bring strong strategic thinking, people leadership, and stakeholder management, with the ability to make things happen through influence.

Experience Needed:

• Experience leading cyber security in a mid-to-large, operationally complex environment
• Strong understanding of cyber risk, governance and assurance
• Exposure to or strong interest in IT/OT security
• Proven ability to communicate cyber risk to non-technical and operational stakeholders
• Strong commercial awareness and practical decision-making

How to apply: Click apply or submit your CV to [email protected] for a 100% confidential, informal conversation where your privacy will absolutely be respected.

Decipher Bureau and the clients we partner with are committed to creating a diverse environment and are proud to be equal-opportunity employers. All qualified applicants will be considered for employment without attention to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.