Chief Information Security Officer (CISO) - Local Authority - London - 4 Months

Chief Information Security Officer (CISO) - Local Authority - London - 4 Months

Posted 2 weeks ago by Allen Lane Ltd.

Apply
£750 Per day
Inside
Hybrid
London, UK
Apply
Attack Surface Management AWS Identity And Access Management (IAM) Cloud Computing Cloud Technology Cyber Incident Response Cyber Resilience Cyber Security Digital Transformation Identity And Access Management Information Governance Management Multi-Factor Authentication Pluggable Authentication Module (PAM) SIPOC Process Stakeholder Management Strategic Leadership Technology Roadmaps

Summary: The Chief Information Security Officer (CISO) role at a leading London council involves providing strategic leadership and direction in cyber security and information governance within a politically sensitive, multi-organisation environment. This senior position is critical for enhancing organisational resilience and ensuring compliance while enabling effective digital transformation. The role is initially for a duration of four months, replacing an exiting member of the organisation.

Key Responsibilities:

  • Develop and own the council's cyber security and information governance strategy, roadmaps, and multi-year improvement plans.
  • Provide clear executive assurance on cyber posture, risk, compliance, and IG health.
  • Lead the continual improvement of resilience across a diverse public sector ecosystem.
  • Work confidently with a wide range of stakeholders including operational teams, senior officers, directors, C-suite leaders, and elected members.
  • Communicate complex cyber and technical risks in clear, non-technical language.
  • Offer evidence-based advice in politically sensitive settings, supporting informed decision-making.
  • Produce high-quality board, committee, and councillor-facing reporting.
  • Present formal papers, options appraisals, and recommendations to senior governance forums.
  • Ensure sound and transparent risk-management practices.
  • Engage with national bodies such as the NCSC, SOC/IOC partners, and other public sector organisations.
  • Build strong relationships with peer authorities, shared service partners, and key suppliers.
  • Lead coordinated responses to major cyber incidents, including multi-party scenarios.
  • Provide confident challenge to architects, engineers, and suppliers.
  • Ensure secure-by-design is embedded into all major transformation programmes.
  • Guide technical decision-making and provide senior assurance on architecture, risk, and delivery quality.
  • Shape technology roadmaps that materially improve organisational cyber resilience.

Key Skills:

  • Proven experience within the public sector (local government, shared services, NHS, central government, or similar).
  • Strong understanding of statutory obligations, public accountability, and information governance frameworks.
  • Experience operating across multi-organisation or shared service environments with varied cyber maturity.
  • A credible, calm, authoritative leader with excellent communication skills.
  • Pragmatic and risk-based, aligned to public sector values and service enablement.
  • Comfortable operating independently while maintaining strong executive relationships.

Salary (Rate): £750 daily

City: London

Country: UK

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: Senior

Industry: IT

Detailed Description From Employer:

Chief Information Security Officer (CISO) - London Council - Shared Services Environment - 4 Months 1 £750pd

A leading London council is seeking an experienced Chief Information Security Officer (CISO) to provide strategic leadership, assurance, and direction across all aspects of cyber security and information governance. This is a senior, high-impact role operating within a politically sensitive, multi-organisation environment, where services, systems, and partners span a broad and complex landscape. You will play a critical part in enhancing organisational resilience, ensuring compliance, and enabling safe, effective digital transformation. This role is to replace an exiting member of the organisation so will be for 4-months initially.

Key Responsibilities:

Strategic Leadership & Assurance

  • Develop and own the council's cyber security and information governance strategy, roadmaps, and multi-year improvement plans.
  • Provide clear executive assurance on cyber posture, risk, compliance, and IG health.
  • Lead the continual improvement of resilience across a diverse public sector ecosystem.

Stakeholder & Political Engagement

  • Work confidently with a wide range of stakeholders including operational teams, senior officers, directors, C-suite leaders, and elected members.
  • Communicate complex cyber and technical risks in clear, non-technical language.
  • Offer evidence-based advice in politically sensitive settings, supporting informed decision-making.

Governance, Reporting & Committees

  • Produce high-quality board, committee, and councillor-facing reporting.
  • Present formal papers, options appraisals, and recommendations to senior governance forums.
  • Ensure sound and transparent risk-management practices.

External Collaboration & Incident Response

  • Engage with national bodies such as the NCSC, SOC/IOC partners, and other public sector organisations.
  • Build strong relationships with peer authorities, shared service partners, and key suppliers.
  • Lead coordinated responses to major cyber incidents, including multi-party scenarios.

Technical Credibility & Delivery

Although this isn't a hands-on engineering role, we're looking for a CISO with the technical depth and credibility to influence major programmes and drive meaningful uplift to the council's cyber-security posture.

You'll bring experience in leading delivery of:

  • Identity & Access Management (IAM) - including MFA, PAM, and identity governance.
  • Network security and segmentation across hybrid or multi-site environments.
  • Endpoint, cloud, and zero-trust architectures, improving protection and reducing attack surface.
  • Security monitoring and incident response, including maturing SOC capability.

Your role will be to:

  • Provide confident challenge to architects, engineers, and suppliers.
  • Ensure secure-by-design is Embedded into all major transformation programmes.
  • Guide technical decision-making and provide senior assurance on architecture, risk, and delivery quality.
  • Shape technology roadmaps that materially improve organisational cyber resilience.

This role suits someone who is not hands-on day-to-day, but has the authority, experience, and insight to lead complex technical change from the top.

Essential Background

Candidates must demonstrate:

  • Proven experience within the public sector (local government, shared services, NHS, central government, or similar). Local govt preferred.
  • Strong understanding of statutory obligations, public accountability, and information governance frameworks.
  • Experience operating across multi-organisation or shared service environments with varied cyber maturity.

Personal Attributes

The ideal candidate will be:

  • A credible, calm, authoritative leader with excellent communication skills.
  • Pragmatic and risk-based, aligned to public sector values and service enablement.
  • Comfortable operating independently while maintaining strong executive relationships

TL;DR

Start: ASAP
Location: London (hybrid working)
Duration: 4 months
Daily Rate: £750
IR35 Status: Inside IR35

Apply
Similar Jobs
Loading data...