3 Head Of Security jobs in the United Kingdom

Complexio’s Foundational AI works to automate business activities by ingesting whole company data – both structured and unstructured – and making sense of it. Using proprietary models and algorithms Complexio forms a deep understanding of how humans are interacting and using it. Automation can then replicate and improve these actions independently.

Complexio is a joint venture between Hafnia and Símbolo, in partnership with Marfin Management, C Transport Maritime, Trans Sea Transport and BW Epic Kosan.

Join a dynamic team at the forefront of revolutionising human-machine interaction through generative AI in collaboration with global partners. We are poised to redefine the essence of human-AI collaboration, unlocking hidden patterns and insights in data that were once considered the exclusive domain of human intellect.

We’re seeking an exceptional person to lead our efforts in implementing a sophisticated privacy-preserving access control framework across our autonomous business process automation platform. You will ensure our system maintains the highest standards of data privacy, security, and regulatory compliance while enabling powerful autonomous capabilities.

Requirements

Strategic Leadership

- Design and implement a comprehensive data privacy and access control architecture that addresses multi-dimensional classification, dynamic permissions, and information barriers

- Tech lead a small dedicated team focused on privacy-preserving access controls and coordinate with cross-functional teams including data ingestion, knowledge mapping, and automation developers

-  Develop and enforce security and privacy standards, policies, and best practices throughout the product development lifecycle

Technical Implementation

- Architect a multi-layered access control model combining Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and purpose-based limitations

- Oversee implementation of fine-grained data classification frameworks using NLP and other technologies

- Design and validate permission propagation mechanisms for graph data models and derived insights

- Establish security boundaries for autonomous AI agents, ensuring proper context isolation and privilege controls

Cross-Team Coordination

- Work closely with engineering teams to integrate privacy controls into the data pipeline, knowledge graph, and AI components

- Collaborate with product management to balance privacy requirements with usability and functionality

- Coordinate with customer success to address client-specific privacy and compliance needs

- Influence and guide development teams to prioritize privacy-by-design principles

Benefits

- 5+ years of experience in information security, data privacy, or access control systems

- Proven track record designing and implementing complex security architectures

- Strong knowledge of modern authorization frameworks, RBAC/ABAC systems, and data classification methodologies

- Experience leading teams and influencing cross-functional stakeholders

- Technical background with understanding of databases, APIs, and enterprise software architecture

Preferred Skills & Experience

- Knowledge of AI/ML systems and the unique privacy challenges they present

- Understanding of data privacy regulations (GDPR, CCPA) and their technical implementation requirements

- Familiarity with LLMs and the privacy implications of their use in enterprise contexts

- Understanding of vector databases and embedding-based systems

- Experience in regulated industries (finance, healthcare, legal) with complex information barrier requirements

-  Background in data lineage and provenance tracking system

-  Experience with graph databases (particularly Neo4j) and their security models

- Security certifications such as CISSP, CIPT, or CIPP/E

Job Title:

Head of Information Security & Assurance Governance (Edgewing)

Location:

Reading area. The role could be contracted to any BAE Systems site (preferably Frimley) but on commencement will immediately be assigned to our Edgewing JV in the Reading area. A financial support package may be available to enable this assignment if required, dependent on certain criteria being met. Due to the nature of this assignment, we envisage there will be a need for mostly on site working, however, flexible working arrangements may be possible - please speak to your recruiter about the options for this role.

Salary:

£115,000 plus executive benefits

What you'll be doing:

Be empowered by the Head of Governance to deliver lines of activity in the adoption and sustainment of Joint Venture (JV) cyber security strategy, team health and pioneering approaches and controls aligned to JV objectives and strategic goalsnDesign and deliver a new threat led approach to cyber security across digital engineering, international collaboration environments and brand-new high assurance digital engineering capabilitiesnLead delivery of Cyber Policy services for JV and support in the monitoring and improvement of service performance.nFacilitates cyber incident response activities within JVnSupports the policy creation for product and supply chain cyber security activities within JVnAct as leaders in our transition to Secure by Design assurance methodologynIs responsible for ensuring cyber security is embedded within all stages of JV project lifecyclesnMaintains an influential position at a senior level, ensuring cyber security is advocated and understood.nShapes and lead cyber security innovation through effective leadership within JVnEnsures visibility of security throughout the business and achieves value through remaining agile and enabling opportunities.nSustain appropriate industry internal and external networks always representing JV's best interests (HQ and NatCos)nThe role holder will prepare and issue internal regulatory documentation for the application of provisions on security and the protection of classified and/or exclusive informationnThe role holder will define the cybersecurity baseline to ensure compliance of IT systems and, if necessary, manage requests regarding exceptions to policies, procedures, and requirements

Your skills and experiences:

Strong stakeholder management skills, communicating with senior leaders across multiple functionsnProven people management skills, current team of 5 which will be increasingnExperienced with influencing and making an impact on business decisions working for a highly regulated organization ideally in the Defense, Military or Government industrynRelevant security related qualifications - CISSP, CompTIA Security+ or CISAnProfessional accreditation such as Chartered Cyber Security Professional (ChCSP), or the necessary professional experience to attain it within the first year of starting the rolenBachelor's degree or relevant security equivalent qualification/experience

Benefits:

As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive.

The team:

By joining Edgewing, you will have a unique opportunity to help shape the company from the ground up - setting the foundations for generations to come, influencing how we work, and helping us build something world-class together. At Edgewing, we're united by a shared purpose to drive what's next in defence - uniting UK, Italian, and Japanese expertise to shape the future of global defence. With trust at the heart of everything we do, we empower our people to dare to go beyond, bring their best as one, and leave a mark that matters on a truly global mission, making a lasting impact through work that truly matters.

Why BAE Systems?

This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.

Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.

Closing Date:

26 th August 2025

We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.

#LI-KW1

#LI-Onsite