About the role

Head of Product Security leading the security strategy and engineering functions at Our Future Health. Managing a multidisciplinary security team to drive secure, trusted product development.

Responsibilities

Acting as deputy to the Director of Information Security, supporting security strategy and leadership alongside the Head of Cyber Defence.
Leading the security consultancy and technical security functions, covering core services such as IAM, vulnerability management, threat modelling, and secure base image maintenance.
Serving as the primary contact for security consultancy, delegating work across the team as needed.
Overseeing security architecture and engineering for our cloud‑native (Azure) production and corporate platforms.
Driving continuous improvement, prioritising enhancements and maturing operational documentation.
Line managing a multidisciplinary security team, including security engineers, application security specialists, and a security architect.
Coaching and mentoring team members across all security disciplines.
Advising product, engineering, and data squads on embedding security into their work and processes.
Communicating security risks, threats, and requirements to both technical and non‑technical colleagues.
Promoting security standardisation and consistency across platforms.
Collaborating with technical and data architects on broader architectural decisions.
Supporting organisational compliance by ensuring colleagues and contractors understand and meet their security responsibilities.

Proven ability to manage and develop high‑performing security teams while fostering a collaborative, people‑centred environment.
Demonstrable experience partnering with product teams to integrate security requirements into roadmaps, balancing security with usability and overall user experience.
Previous experience working with DevSecOps or similar delivery models, embedding security in a way that supports rapid, iterative development.
Experience designing secure cloud‑native architectures at both conceptual and detailed technical levels.
Familiarity with Microsoft security technologies such as Defender, Sentinel, Entra, and Purview.
An understanding of modern software engineering practices including source control, testing, code review, design documentation, and effective debugging.
Advanced knowledge of security risk management and threat modelling.
Solid understanding of core security controls, including cloud security, IAM, network security, and vulnerability management.
Knowledge of modern cloud platforms, particularly Azure.
Awareness of ISO 27001 and other widely used security standards.
Comfortable working with Infrastructure as Code, ideally including Terraform.
Experience working in Agile environments.
The ability to communicate clearly between technical and non‑technical teams.
Comfortable operating in a fast‑paced, small‑team environment.
Relevant professional certifications.

Salary from £110,000 per annum.
Generous Pension Scheme – We invest in your future with employer contributions of up to 12%.
30 Days Holiday + Bank Holidays – Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you.
Enhanced Parental Leave – Supporting you during life’s biggest moments.
Cycle to Work Scheme – Save 25-39% on a new bike and accessories through salary sacrifice.
Home & Tech Savings – Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice
£1,000 Employee Referral Bonus – Know someone amazing? Get rewarded for bringing them on board!
Wellbeing Support – Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family.
A Great Place to Work – We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements.