Programme Director

Location:
London
Job Type:
Contract
Industry:
Business Transformation
Job reference:
BBBH432806_1770809353
Posted:
about 2 hours ago

Job Title: Programme Director
Contract: 12-18 months
Location: London (Hybrid working model)

Overview
We are seeking an experienced Programme Director to lead a critical security transformation initiative focused on implementing and maturing CIS Controls as part of the organisation's Operating Securely programme.


This is a hands-on leadership role requiring both strategic oversight and delivery depth. The successful candidate will drive structured implementation of security controls across a complex technology landscape, ensuring alignment between security requirements and technical execution.


This role is suited to an individual who has led enterprise-scale control implementation programmes and can confidently operate at both delivery and executive levels.

Key Responsibilities

  • Lead the end-to-end delivery of the CIS Controls implementation and maturity programme.
  • Establish a structured roadmap for control uplift, remediation, and capability development.
  • Translate security requirements into actionable delivery plans for technology and engineering teams.
  • Act as the bridge between Information Security, Technology, and broader business stakeholders.
  • Provide Executive Committee (ExCo) level reporting, assurance, and governance oversight.
  • Drive programme structure, risk management, financial tracking, and milestone management.
  • Oversee dependency management across multiple workstreams and technology domains.
  • Ensure issues and vulnerabilities are tracked, prioritised, and remediated in line with agreed timelines.
  • Work closely with a small central programme team while leveraging a larger security and technology delivery function.

Required Experience

  • Proven experience leading large-scale security or cyber transformation programmes.
  • Direct experience implementing and maturing CIS Controls.
  • Strong understanding of enterprise security frameworks and control environments.
  • Experience working within complex, multi-stakeholder technology environments.
  • Ability to translate security frameworks into practical, deliverable technical initiatives.
  • Experience engaging with senior executives and providing clear, structured assurance reporting.
  • Comfortable operating at both strategic and detailed delivery levels.
  • Retail sector experience desirable but not essential

Key Skills & Attribute

  • Strong programme governance and delivery discipline.
  • Ability to influence across security and technical domains.
  • Confident executive communicator.
  • Pragmatic and delivery-focused.
  • Comfortable "rolling sleeves up" where required.
  • Structured, risk-aware and outcome-driven
Back to Search Results