Head of Cyber Security and Resilience

Permanent role

Think cyber security is boring? Prove us wrong!

We’re looking for someone who loves a challenge—and maybe a little chaos. As our Head of Cyber Security and Resilience, you’ll be the strategist, the fixer, and the calm in the storm.

You’ll tackle AI risks, global compliance, and all the stuff that keeps us safe. You’ll lead the charge when incidents hit and make security something everyone actually cares about.

If you’re sharp, fearless, and ready to shake things up, Hull’s waiting for you.

Reporting to the University Secretary, Registrar & Chief Compliance Officer, you will be the University’s authority on cyber security and information governance. This is a pivotal leadership role, responsible for developing and implementing a comprehensive cyber security strategy, managing risk, and ensuring compliance with regulatory requirements. You will also lead the University’s arrangements for critical incident management and business continuity.

Let’s make it happen: hull.ac.uk/jobs.

Specific Duties and Responsibilities of the post:

Working with the USRCCO, the post-holder will be responsible for the cyber security framework, working closely with colleagues in Infrastructures Services who manage the day-to-day operations of the University’s technical controls within the SecOps and IT operations teams.

The post holder will have responsibility for the development and implementation of a comprehensive cyber security and information governance strategy, tailored to the unique needs of a higher education environment with a large and complex network and data infrastructure. This includes establishing robust policies and procedures, conducting risk assessments, managing the university’s risk register in relation to cyber security and information governance, and ensuring compliance with all relevant legislation and guidance.

The role will work closely with the University’s Data Protection Officer and their team, providing advice and guidance on technical matters and areas of overlap. While not directly managing the operational teams within IT, this position will exert strong matrixed leadership, collaborating closely with the Cyber Security Operations team  and other IT Operations Managers to ensure cohesive security practices, effective incident response planning and testing, and the management of third-party security risks. This requires building strong working relationships and fostering a culture of shared responsibility for cyber security across the institution.

The post holder will take a lead role in developing and supporting the University’s arrangements for the management of critical incidents and business continuity. They will work closely with senior stakeholders across the institution providing advice and guidance on institutional processes and support on local arrangements. During incidents, taking a leadership role and be responsible for delivering the university’s response, ensuring timely and effective resolution of incidents, and the correct communication to all relevant internal and external stakeholders.

Develop and maintain an Information Security Management System (ISMS) based on recognised frameworks. Lead and deliver a comprehensive security awareness program.

Provide expert advice and guidance to senior leadership and other stakeholders on all matters related to cyber security and information governance which may be highly technical and require careful explanation.

Engage in professional networking and maintain relationships with external organisations, industry experts, and regulatory bodies to inform and enhance the university's security strategies.

Advert information