About the Role
Borjas and Asociados Global Solutions is looking for an experienced Cyber Security Director to join our team in London. This senior leadership role is responsible for defining the organisation’s cyber security strategy, strengthening its security posture, and ensuring that technology risks are managed effectively across systems, infrastructure, cloud environments, and business operations.
You will work closely with executive leadership, technology teams, risk professionals, legal advisers, and external partners to protect the organisation from cyber threats and support secure business growth. The successful candidate will combine strategic leadership with strong technical knowledge, regulatory awareness, and experience managing complex security programmes.
Key Responsibilities
Cyber Security Strategy: Develop and implement a comprehensive cyber security strategy aligned with business objectives, technology priorities, and risk appetite.
Security Leadership: Lead cyber security, security operations, engineering, governance, and assurance teams while establishing clear priorities and performance standards.
Threat Management: Oversee threat monitoring, detection, analysis, and response activities across the organisation.
Incident Response: Direct the investigation and management of major cyber incidents, data breaches, and security events.
Security Operations: Ensure that security monitoring, vulnerability management, endpoint protection, identity controls, and network security processes operate effectively.
Risk Management: Identify, assess, and prioritise cyber risks across infrastructure, applications, cloud services, suppliers, and business processes.
Security Architecture: Provide oversight for secure system design, cloud architecture, network controls, and technology transformation initiatives.
Governance and Compliance: Maintain security policies, standards, controls, and governance arrangements aligned with relevant legal, regulatory, and industry requirements.
Executive Reporting: Present cyber risk, incident trends, programme performance, and strategic recommendations to senior leadership and board level stakeholders.
Third Party Security: Assess the cyber security arrangements of suppliers, contractors, technology providers, and other external partners.
Audit and Assurance: Coordinate internal audits, external assessments, penetration testing, certification activities, and security assurance reviews.
Business Continuity: Support cyber resilience, disaster recovery, crisis management, and business continuity planning.
Security Awareness: Develop training and awareness programmes that improve employee understanding of cyber threats and secure working practices.
Budget Management: Plan and manage the cyber security budget, investments, suppliers, tools, and resource requirements.
Programme Delivery: Lead major security improvement programmes, remediation initiatives, and technology security projects.
What We Are Looking For
Experience: At least 10 years of experience in cyber security, information security, security engineering, technology risk, or a related field.
Leadership Background: Previous experience leading a cyber security function, managing senior professionals, and overseeing large security programmes.
Education: Bachelor’s degree in Cyber Security, Computer Science, Information Technology, Engineering, Risk Management, or a related discipline.
Technical Knowledge: Strong understanding of network security, cloud security, identity and access management, vulnerability management, incident response, and security operations.
Framework Knowledge: Familiarity with ISO 27001, NIST, Cyber Essentials, GDPR, security governance, and relevant UK regulatory requirements.
Professional Qualifications: Certifications such as CISSP, CISM, CRISC, CCSP, or equivalent are desirable.
Incident Management: Proven experience leading major cyber incidents, investigations, remediation programmes, and executive communications.
Strategic Thinking: Able to translate cyber risks into clear business priorities, investment decisions, and long term security plans.
Communication Skills: Confident presenting technical and risk information to executives, clients, auditors, regulators, and non technical stakeholders.
Commercial Awareness: Understands how cyber security supports business growth, client trust, operational resilience, and regulatory compliance.
Decision Making: Demonstrates sound judgement and the ability to make timely decisions during high pressure security events.
Professional Approach: Maintains integrity, confidentiality, accountability, and consistently high standards of leadership.
Pay: £10,500.00-£11,000.00 per month
Work Location: In person