Information Technology Security Officer

Company Overview

Lexham Insurance was formed in October 2000 as a specialist moped, scooter and motorcycle insurance broker in the UK. Since its creation, Lexham has continued to grow and has become a leading independent insurance provider.

We’re looking for an Information Technology Security Officer to join our fast-growing team in Diss, Norfolk.

Information Technology Security Officer is a critical, strategic role for someone with technical and practical expertise who can confidently lead the organisation’s cyber security agenda.

• Lead the development, implementation, and continuous improvement of the Lexham Group’s cyber security strategy.
• Act as the senior accountable executive for cyber risk, compliance, and incident response.
• Advise executive leadership, and trustees on cyber threats, risks, and mitigation strategies.
• Embed a cyber‑aware culture across the organisation through training, awareness campaigns, and policy enforcement.
• Maintain oversight of KPIs, threat intelligence, and incident response protocols.
• Lead the development and enforcement of IT security policies and procedures.
• Conduct audits, gap analyses, and risk assessments across the Lexham Group.
>

Additional duties

Any other duties commensurate with the level of responsibility of this role.

Qualifications
• Hold at least one professional certification (e.g. CISSP, CISM, CRISC).
• Deep understanding of cyber security frameworks and standards (e.g. NIST, ISO 27001) and incident response protocols.
• Strategic thinker with a proactive approach to risk management.
• Ability to work under pressure and manage multiple priorities.
• Proven experience in IT security, ideally within insurance or financial services.