Webskitters - Head of Cyber & Information Security

We are seeking a strategic, forward-thinking Head of Cyber & Information Security to lead the design, implementation, and governance of enterprise-wide information security frameworks across Webskitters.

This senior leadership role will be responsible for defining and executing the organisation's cybersecurity, data protection, and compliance strategy-ensuring that every platform, process, and client engagement adheres to the highest global security standards.

The successful candidate will combine deep technical expertise with business acumen, leading a team of security professionals to safeguard information assets, protect client data, and maintain resilience against evolving cyber threats.

Experience in service-based organisations, where multi-client engagement and compliance are paramount, is essential.

Required Skills & Experience :

Essential :

- Minimum 8-10 years of progressive experience in Cybersecurity, Information Security, or IT Risk Management, with 3+ years in a leadership role.

- Proven experience in a service-based or consulting organisation, handling multi-client security governance and delivery.

- Deep understanding of security domains, including network security, cloud security, application security, and endpoint protection.

- Hands-on expertise in cloud security architecture, particularly in AWS (preferred), Azure, or GCP environments.

- Strong knowledge of security frameworks such as NIST, ISO 27001, CIS Controls, and SOC 2.

- Proficiency with tools like Splunk, CrowdStrike, Tenable, Qualys, SentinelOne, Fortinet, or Palo Alto.

- Demonstrated success in leading security audits, vulnerability assessments, and incident response programmes.

- Experience integrating DevSecOps practices into modern CI/CD pipelines.

- Excellent leadership, communication, and stakeholder management skills.

Desirable :

- Bachelor's or Master's degree in Information Security, Computer Science, or related discipline.

- Professional certifications such as CISSP, CISM, CISA, CEH, or AWS Security Specialty.

- Exposure to data privacy and data security operations at scale.

- Experience designing or managing SOC functions.

- Strong understanding of risk management, forensics, and business continuity planning.

- Familiarity with security automation, SOAR platforms, and zero-trust architectures.

Key Performance Indicators (KPIs) :

- Reduction in security incidents and mean time to detect/respond (MTTD/MTTR).

- Achievement and maintenance of compliance certifications (ISO 27001, SOC 2, etc.

- Effectiveness of risk mitigation and vulnerability management programmes.

- Employee security awareness and training adoption rates.

- Client satisfaction and confidence in security governance during audits.