The Role

We are looking for a Head of Information Security to be across developing, implementing, and maintaining our club’s information security strategy. This includes ensuring the confidentiality, integrity, and availability of all systems, data, and networks, and maintaining compliance with relevant standards and regulations. 

Who we are

We are one of the most famous clubs in world football, with a rich heritage and history of success – read more about our history, here.

Beyond that, we are passionate about our local community and, behind the scenes, we have a wide variety of opportunities and career paths for all. We have a very defined purpose: to act for a winning team, culture and community. We achieve this by ensuring we are courageous in the pursuit of progress, we champion our community and each other, and that we do the right thing (even when no one is looking).

Your day-to-day

• Provide strategic leadership for information security - you’ll develop and deliver a club-wide cybersecurity strategy, embedding policies, standards, and governance aligned to our business objectives

• Lead risk, compliance, and regulatory assurance - you’ll oversee frameworks including ISO 27001, NIST, CIS Controls, Cyber Essentials Plus, and ensure compliance with GDPR, PCI DSS, and related regulations

• Report cyber risk and security posture to senior leadership - you’ll present clear, actionable updates to our executives and board to support informed decision making

• Oversee cybersecurity operations and incident response - you’ll lead the security operations centre, ensuring 24/7 monitoring, effective threat detection, and robust response to security incidents

• Manage security architecture and core technologies - you’ll oversee identity and access management, network security, endpoint protection, SIEM/SOAR, and vulnerability management programmes

• Lead cloud, application, and DevSecOps security - you’ll ensure secure software development and manage security across cloud, SaaS, and third-party environments

• Own third-party and supply chain cyber risk - you’ll conduct vendor security assessments and embed cybersecurity requirements into procurement and contracts

• Drive security awareness and culture - you’ll design and deliver training and awareness programmes that strengthen cyber hygiene and resilience across our club

What we are looking for

• Experienced information security leader - you bring proven experience delivering business wide security strategy, governance, and assurance

• Risk and compliance specialist - you have hands-on experience managing ISO 27001, GDPR, PCI DSS, and wider regulatory frameworks

• Cyber operations expert - you’ve overseen security operations centres, incident response, and cyber threat management in complex environments

• Technical security background - you’re confident implementing and managing identity and access controls

• Influential communicator - you’re able to engage, advise, and challenge stakeholders at all levels, including senior leaders and board members

• Analytical problem-solver - you assess risk effectively, manage incidents decisively, and design practical security solutions

• Culture champion - you drive security awareness and training across the organisation

• Credible expertise in cybersecurity - you hold relevant certifications (or equivalents) and are committed to continuous professional development
  
  

Why choose us

At Arsenal, we want everyone to feel a sense of trust and belonging, so we are proud of both our club values and also what we offer to our employees. As one of our Gunners, you will receive:

• An exciting reward and recognition scheme

• Generous holiday allowance which increases with your length of service

• Great internal learning and development programmes

• A flexible hybrid working model

• Priority access to apply for match tickets

• A competitive health and wellbeing benefits package

• A leading Employee Assistance Programme

• Great discounts with some of our Partners

Discover why ‘Our Gunners’ are proud to be part of our team - view their stories here.

Arsenal for Everyone

Arsenal for Everyone is our commitment to promoting and embracing equality, diversity and inclusion, so that everyone connected to the club feels like they belong to the same Arsenal family. We believe that diversity of background, skills and experience drives our success on and off the pitch. 

Disability Confident Leader

We are a Disability Confident Leader. We actively welcome and encourage applications from people with disabilities and long-term health conditions. If you need disability-related adjustments to the recruitment process, please indicate this in your application.

If you are likely to meet the definition of being a ‘disabled person’ according to the Equality Act 2010, you may be eligible to apply for an interview via the Disability Confident Scheme - please indicate this in your application form below. The information you share with us about your health or disability will not be used in recruitment decisions.

Our Commitment to Safeguarding

We are committed to ensuring that our environments for children, young people and adults at risk remain safe and inclusive. We therefore require successful candidates to complete a DBS check and other essential background checks prior to starting their employment. Depending on the responsibilities of the role, a DBS will be either a basic, standard, or enhanced check.

Application Closing Date - Wednesday 7th January 2026

Please note: we reserve the right to close the position early if application volumes are particularly high. We encourage you to get your application in sooner rather than later.

Updates on the status of your application will be sent via email, please routinely check your spam and junk folders, as occasionally emails sent via the Teamtailor platform will find themselves there.

Good luck!