hello@formularecruitment.co.uk 02039 407 464
hello@formularecruitment.co.uk 02039 407 464
  • London (Hybrid)
  • £80,000 - £100,000

Information Security Lead – Health Tech

Salary: up to £100,000 + benefits

Location: London (Hybrid)

I’m hiring for a standout InfoSec Lead to join one of the UK’s most ambitious mental health tech startups. This is a company on a mission, combining clinical expertise with smart tech to shake up how people access mental health support.

They need someone sharp, hands-on, and forward-thinking to take charge of security, privacy, and compliance as they scale.

What You’ll Do

  • Define and implement security and compliance policies and controls across infrastructure, applications, and internal systems.
  • Lead the development and execution of the roadmap toward ISO 27001 certification and other key compliance frameworks.
  • Collaborate with external stakeholders and customers to support security-related queries and onboarding.
  • Drive internal audits and prepare documentation for external assessments.
  • Work with engineering leadership to integrate security best practices into the SDLC, CI/CD, and cloud infrastructure.
  • Guide secure architectural decisions and deployment processes.
  • Maintain and evolve security training, policy documentation, and incident response plans.
  • Monitor the regulatory landscape to ensure compliance with UK health data and AI-in-health tech regulations.

Your Experience

  • 5+ years of experience in information security and compliance, ideally in regulated environments such as health tech.
  • Deep knowledge of ISO 27001, UK GDPR, and industry best practices.
  • Proven experience preparing for and leading ISO or similar audits.
  • Solid understanding of AWS / Azure / GCP cloud security and web application security principles.
  • Strong communication and documentation skills.
  • Experience with tools like SIEM, CSPM, vulnerability scanners, and monitoring platforms.

Nice to Have

  • Experience working in or with UK healthcare organisations (e.g., NHS or private providers).
  • CISSP, CISM, or ISO 27001 Lead Implementer.
  • Exposure to agile environments or health tech startups.

Perks & Benefits

  • Private medical insurance
  • Gym membership support
  • Workplace pension
  • 25 days annual leave + 3 “breather” days
  • Flexible remote-first work culture
Apply