Director of Cyber Defence & Strategic Operations

Company Description

At Informa Global Support, we’re about connecting businesses and professionals with knowledge. From cutting-edge research to specialist digital demand, our reach is extensive. We’re the power behind a range of fantastic brands such as FAN EXPO, Omdia, World of Concrete and many more. Through cutting edge research we’re here to champion specialists by helping people learn more, know more and do more.

As those businesses grow and develop, so will the opportunities for you to grow and develop within Informa Global Support. We’re passionate about building for the future - and want your future to be with us. Because we know you’re hungry to expand your skills by embracing new experiences. And all the while you’ll be supported by a community of talented and like-minded colleagues, where openness is encouraged and a can-do attitude is the norm.

Job Description

This role is base in our Howick Place, London office.

The Information Security (InfoSec) team at Informa is dedicated to protecting the organisation's information assets and ensuring the confidentiality, integrity, and availability of data. The team is responsible for implementing and maintaining robust security measures, policies, and procedures to safeguard against cyber threats and vulnerabilities. The InfoSec team works collaboratively with various departments across the organisation to embed security practices and awareness, ensuring that security is an integral part of Informa's business operations.

As a key member of Informa’s Information Security leadership team, you will be responsible for driving the strategic direction and operational excellence of the company’s cyber defence capabilities. This role leads the global Security Operations Centre (SOC), ensuring robust threat detection, incident response, and continuous monitoring to protect Informa’s digital assets and operations.

As the Director, you will also play a pivotal role in supporting mergers and acquisitions (M&A) from a cybersecurity perspective—leading due diligence, identifying integration risks, and ensuring secure onboarding of acquired entities.

Additionally, in this role, you will provide executive oversight to the Head of Information Security - APAC, aligning regional initiatives with global security standards while addressing local regulatory and threat landscapes.

Key Areas of Responsibility/Accountability

• Security Operations Centre (SOC):
• Leadership and Management: Oversee the daily operations of Informa's SOC, ensuring the effective monitoring, detection, and response to security incidents. Lead a team of security analysts and engineers, providing guidance, mentorship, and performance management.
• Incident Response: Develop and implement incident response protocols and procedures to ensure timely and effective handling of security incidents. Coordinate with other departments and external partners to manage and mitigate security threats.
• Threat Intelligence: Utilise threat intelligence to proactively identify and address potential security risks. Stay updated on the latest cybersecurity trends and threats to ensure Informa's SOC remains at the forefront of security operations.
• Security Technologies: Implement and maintain security technologies and processes to protect Informa's digital assets. Evaluate and recommend new security tools and technologies to enhance SOC capabilities.
• Compliance and Reporting: Ensure compliance with regulatory requirements and industry standards. Prepare and present regular reports on SOC activities, incident trends, and overall security posture to senior management.
• Mergers and Acquisitions (M&A): Manage the information security aspects of M&A activities, including due diligence, risk assessment, and integration planning. Ensure that security considerations are integrated into the M&A process to protect Informa's interests.
• APAC Information Security: Provide oversight and support to the Head of Information Security - APAC, ensuring alignment with Informa's global security strategy. Coordinate regional security initiatives and ensure compliance with local regulations and standards.

Key Outputs and Outcomes

• Security Operations Centre (SOC):
• Strengthen business engagement and InfoSec value through proactive threat intelligence and incident response.
• Improve decision-making efficiency and outcomes by providing timely and accurate security reports.
• Enhance reporting cycles and quality to ensure senior management is well-informed about security posture.
• Work closely with the Director of Information Security Portfolio & Programmes and lead the delivery of SOC projects with excellence, ensuring effective monitoring and response to security incidents.
• Optimise resource allocation and demand management within the SOC to maintain high operational efficiency.
• Drive data-driven decision-making through metrics reporting on SOC activities.
• Ensure successful realisation of the InfoSec vision by maintaining a robust and effective SOC.
• Mergers and Acquisitions (M&A):
• Strengthen business engagement by embedding cybersecurity risk management into all phases of M&A activity, from due diligence through to post-acquisition oversight.
• Support informed decision-making by delivering clear, timely, and actionable risk assessments tailored to the business context of each transaction.
• Enhance reporting quality and cadence to ensure stakeholders are fully informed of cyber risks and mitigation strategies throughout the M&A lifecycle.
• Lead the delivery of M&A-related security initiatives, ensuring appropriate controls are implemented—whether through full integration or ongoing operational oversight.
• Optimise resource planning and prioritisation to support efficient execution of M&A security activities across multiple concurrent deals.
• Drive data-informed decision-making through consistent metrics and insights on M&A-related cyber risk posture.
• Safeguard Informa’s strategic and commercial interests by ensuring cyber risks are effectively managed in alignment with the company’s risk appetite and business objectives.
• APAC Information Security:
• Strategic Oversight of APAC Regional Security: Provide executive leadership and direction to the APAC Regional Information Security Office, ensuring alignment with Informa’s global cybersecurity strategy and risk management framework.
• Risk-Driven Regional Enablement: Ensure that regional security initiatives are prioritised and executed based on business risk, regulatory requirements, and local threat landscapes, while maintaining consistency with global standards.
• Regulatory and Compliance Assurance: Support the Head of InfoSec APAC in engaging with local regulatory bodies and ensuring compliance with regional cybersecurity laws, including China’s PIPL and MLPS, and other jurisdictional requirements.
• Incident Response Readiness: Oversee the development and execution of regional incident response capabilities, ensuring timely escalation, coordination, and resolution of security incidents in APAC.
• Performance Monitoring and Reporting: Establish and maintain clear reporting mechanisms to track the effectiveness of regional security controls, risk mitigation efforts, and compliance posture.
• Regional Integration into Global Programs: Ensure APAC participation in global security initiatives, including awareness campaigns, vulnerability management, and secure development practices, fostering a unified security culture.
• Capability Development and Support: Mentor and support the Head of InfoSec APAC, fostering leadership development and ensuring the regional team has the resources, guidance, and visibility needed to succeed.

Measures Of Success

• Introduce and manager key metrics for the function
• Reduction in mean time to detect (MTTD) and mean time to respond (MTTR) to security incidents.
• Effective identification and management of cybersecurity risks associated with M&A activity, from due diligence through to integration or ongoing operational oversight, aligned with the business strategy and risk appetite.
• Compliance with APAC regional and global cybersecurity regulations and standards.
• Positive audit outcomes and risk posture improvements.
• High engagement and performance scores from direct reports and regional teams.
• Effective cross-functional collaboration and stakeholder satisfaction.

Qualifications

What we’re looking for

Experience

• Extensive experience in cybersecurity
• Proven experience managing a global or regional SOC.
• Demonstrated success in leading cybersecurity aspects of M&A activities.
• Experience working in a complex, matrixed, and multinational organization.
• Familiarity with regulatory environments across Asia and global security frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK).
• Extensive experience in cybersecurity planning and delivery.
• Strong leadership skills with the ability to manage complex security operations across multiple regions.
• Superior analytical and problem-solving skills.
• Ability to communicate effectively with strong interpersonal skills and emotional intelligence.
• Strong negotiation skills and the ability to influence corporate opinion and key stakeholders.

Key Competencies:

• Strategic thinking with the ability to translate vision into execution.
• Strong leadership and team development skills.
• Excellent communication and stakeholder management abilities.
• Deep understanding of threat landscapes, security technologies, and incident response.
• Ability to manage multiple priorities and deliver results in a dynamic, fast-paced environment.
• Cultural awareness and sensitivity, especially in working with diverse regional tea

Additional Information

We believe that great things happen when people connect face-to-face. That's why we work in-person with each other, or with customers and partners, three days a week or more. When you’re not spending time together in one of our offices or other workplaces – like at an Informa event – you get the flexibility and support to work from home or remotely.

Employee experience is very important to us at Informa. On top of joining a supportive, diverse and ambitious team that welcomes all types of candidates. We are also flexible with different working patterns and prioritize promotions internally. Our benefits include:

• Great community: a welcoming culture with in-person and online social events, our fantastic Walk the World charity day and active diversity and inclusion networks
• Broader impact: take up to four days per year to volunteer, with charity match funding available too
• Career opportunity: the opportunity to develop your career with bespoke training and learning, mentoring platforms and on-demand access to thousands of courses on LinkedIn Learning. When it’s time for the next step, we encourage and support internal job moves
• Time out: 25 days annual leave, rising to 27 days after two years, plus a birthday leave day and the chance to work from (almost!) anywhere for up to four weeks a year
• A flexible range of personal benefits to choose from, plus company funded private medical cover
• A ShareMatch scheme that allows you to become an Informa shareholder with free matching shares
• Strong wellbeing support through EAP assistance, mental health first aiders, a healthy living subsidy, access to health apps and more
• Recognition for great work, with global awards and kudos programmes
• As an international company, the chance to collaborate with teams around the world

We know that sometimes the 'perfect candidate' doesn't exist, and that people can be put off applying for a job if they don't fit all the requirements. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. You could be just what we need! We believe strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed.  As such, Informa is proud to be an Equal Opportunity Employer.  We do not discriminate on the basis of race, color, ancestry, national origin, religion, or religious creed, mental or physical disability, medical condition, genetic information, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity, gender expression, age, marital status, military or veteran status, citizenship, or other protected characteristics under federal, state or local law.

If you would like to request reasonable adjustments or accommodations to assist your participation in the hiring process and, or in the advertised position, please inform the appropriate Talent Acquisition Partner for the role once they have been in touch. 

See how Informa handles your personal data when you apply for a job here.