Thirteen Group
Head of Cyber and Information Security

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Head of Cyber and Information Security
Head of Cyber and Information Security at Thirteen Group
Role Overview
Thirteen Group is seeking a Head of Cyber and Information Security to lead the group’s information and cybersecurity strategy.
The world of cybersecurity develops rapidly, so we’re looking for a specialist with in-depth knowledge to ensure Thirteen Group’s assets remain secure, compliant, and resilient against evolving threats.
The role will require a commitment of at least two days per week in our Hudson Quay offices in Middlesbrough, with occasional additional office presence as required for business needs.
Benefits
- Annual salary: £90,008
- Annual leave: Starting at 28 days, rising to 31 days after three years, plus one day off for your birthday and all bank holidays
- Pension scheme: Up to 17% employer contribution (flexible options for both employer and employee contributions of up to 10% and 7% respectively)
- Health benefits through Simply Health, including savings on expenses and access to a health and wellbeing support service
- Discounts and rewards via our T’dar platform, offering savings on popular high-street brands
- Flexible annual leave buyback and selling opportunities
Key Responsibilities
- Lead cyber defence, ensuring the safety of customer and colleague data
- Conduct regular internal audits to identify and address vulnerabilities in servers, platforms, and end-user devices, supporting relevant teams for remediation
- Ensure compliance with key regulations and standards:
- Cyber Essentials Plus
- ISO27001:2022
- Alignment with the NCSC’s Cyber Assurance Framework and NIST guidelines
- Lead cyber threat intelligence, using trusted sources to recognise emerging threats and implement proactive countermeasures
- Coordinate cyber incident response with external partners when required
- Manage, support, and develop a team of two cybersecurity specialists and the group Data Protection Officer (DPO)
- Promote initiatives to drive awareness and training on security and compliance culture across the organisation
- Support DSAR (Data Subject Access Request) and SAR (Subject Access Request) compliance activities in collaboration with the nominated DPO, ensuring full adherence to data protection obligations
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
About You
We seek an experienced leader in cyber and information security, preferably with experience in complex organisations beyond the social housing sector. Key qualities include:
- Senior leadership experience in cyber and information security
- Extensive knowledge of:
- Cybersecurity frameworks
- Incident response
- Threat intelligence
- Data protection legislation (a bonus if you hold certifications such as CISSP, CISM, or CISA)
- Exceptional people management and communication skills, with the ability to simplify complex security concepts for diverse audiences
- A track record of innovative and proactive cybersecurity solutions
- Strong problem-solving skills to address complex security challenges


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Why Thirteen Group?
We’re more than a housing association—we’re dedicated to community building. As the largest housing association in the North East and among the top 25 nationally, we manage over 36,000 homes.
By joining Thirteen Group, you’ll:
- Experience a local, trusted organisation with global appeal for talent
- Engage in a diverse and inclusive work culture
- Be supported by tailored programmes extending beyond traditional housing solutions
Next Steps
For role-specific queries, contact: Hassan Bahraini Hassan.Bahrani@thirteengroup.co.uk
NO recruitment agency partnerships are involved in this application process.
- Arbeitsvermittlung von Dritten ist in diesem Fall nicht vorgesehen.
Are you ready for a rewarding challenge? Join Thirteen Group and make a meaningful impact by helping us improve lives every day. Apply now!
A Note on Hiring Compliance: As part of the process, shortlisted candidates may be required to verify their right to work in the UK. We are not currently a Skilled Worker Sponsor.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills