Deputy CISO

Why we're hiring:

As Deputy Chief Information Security Officer at WPP, you will be the operational cornerstone of our Digital Security & Risk Management function, working closely with the CISO to translate WPP's cybersecurity strategy into tangible, measurable outcomes. You will lead the execution of our global security operating model, bridging deep technical security expertise with business execution to ensure consistent protection, secure innovation, and resilient operations across our extensive global technology estate.

What you'll be doing:

• Lead the operational execution of WPP’s global security operating model, coordinating technical governance, security analytics, and business-aligned security delivery.
• Ensure security architecture and control standards are operationalised across critical domains including Cloud, Identity, Endpoint, Infrastructure, and Vulnerability & Exposure Management.
• Own the governance, policy, risk and assurance for WPP Open, WPP’s pioneering agentic marketing platform.
• Partner strategically with the Business Security Services Directors (BSSs) across Media, Creative, Production, and Enterprise Solutions to embed security priorities and ensure consistent remediation.
• Own and drive operational cybersecurity performance metrics, translating technical data into clear organisational risk exposure for executive and board reporting.
• Champion a strong security culture, positioning security as an enabler of innovation, client trust, and platform resilience.
• Apply deep expertise in Artificial Intelligence's impact on cybersecurity, leveraging AI for threat detection, anomaly detection, and security operations optimization, and guiding executive stakeholders on emerging AI-driven threats.

What you'll need:

• Significant progressive leadership experience in cybersecurity, risk management, or technology.
• Proven track record of leading enterprise security programs or operations within large, complex global organisations.
• Deep operational expertise across Cloud security, Identity security, Vulnerability Management, Secure Software Development, and Data Governance. SaaS platform security background would be a nice to have.
• Strong experience applying leading security frameworks (e.g., NIST, ISO 27001, CIS Critical Security Controls).
• Demonstrated ability to manage security across cloud platforms, digital products, and complex identity environments.
• Strategic understanding and applied experience leveraging Artificial Intelligence in security contexts (e.g., threat detection, anomaly detection, SOAR).
• Exceptional ability to influence senior stakeholders, drive organisational change, and translate complex cyber risk into clear business language.

Who you are: