VP - Information Security

We are an emerging AI infrastructure start-up building next-generation data centres and high-performance compute environments to power AI, LLM training, and cloud-scale workloads, powered by renewable energy, rooted in sovereign capability, and designed to give enterprises and innovators the compute they need. Backed by leading investors, we are rapidly expanding our site development pipeline, engineering capabilities, and commercial partnerships.

We are considering both permanent and fractional hires.

The VP, Information Security is accountable for the day to day security posture and execution across all Carbon
3.ai assets, physical, digital, and operational, whether owned, operated, or managed on behalf of customers and partners.

This role establishes the initial security operating foundation for Carbon
3.ai and serves as the beachhead for a security function that will scale in scope and responsibility as the business grows.

Reporting to the CTO, and partnering closely with the CTO and COO, the role combines hands on operational execution with senior, customer facing credibility, supporting Carbon
3.ai sovereign and sustainable AI mission.

• Own and operate the Carbon
  3.ai security program across infrastructure, platforms, networks, and data.
• Build and run a scalable security operating model, tooling, and core processes.
• Embed secure by design practices into architecture, engineering, and delivery.
• Establish security governance, metrics, and reporting for executives, customers, and regulators.

• Own security architecture for AI and HPC platforms, including GPU infrastructure, Kubernetes, and orchestration layers.
• Lead cloud, network, identity, and platform security using zero trust principles.
• Define and enforce data centric security and sovereignty controls.
• Oversee monitoring, incident response, key management, and threat detection.
• Own security across the physical to digital boundary, including data centre adjacent environments.

• Maintain the cyber risk management framework, including threat modelling and risk registers.
• Lead audit, certification, and customer due diligence readiness.
• Ensure compliance with UK data protection, sovereign AI expectations, and customer requirements.
• Act as the accountable executive for security incidents and external engagement.

• Partner with commercial and delivery teams to support sales, onboarding, and assurance.
• Act as the senior security authority with customers, partners, and regulators.
• Advise the CTO and COO on security risk, priorities, and trade offs.
• Shape the roadmap for the future security organisation and build a pragmatic security culture.

• Current or previously held, UK security check clearance or higher. (Would consider someone eligible)
• Senior security leadership experience in infrastructure, cloud, platform, or regulated environments.
• Exposure to AI, HPC, GPU platforms, or large-scale infrastructure.
• Proven ownership of security architecture and operations.
• Strong grounding in cloud, network, identity, monitoring, and incident response.
• Experience in sovereign, defence, government adjacent, or critical-infrastructure contexts.
• Able to translate security risk into clear business decisions.
• Comfortable operating without a large existing team and representing security externally.
• Experience with secure by design and zero trust architectures.
• Exposure to sustainability led technology or energy aware infrastructure.

• Accountable, pragmatic, and delivery focused
• Hands on leader with strong technical credibility
• Trusted partner to executives, customers, and regulators
• High integrity and aligned with the Carbon3ai sovereign and sustainable AI mission

You’ll be joining a mission-driven start-up building critical national infrastructure, where operational excellence directly enables growth. This role offers high visibility with leadership, real autonomy, and the chance to shape how a next-generation company operates at scale.