Information Security Manager
Home-based with UK-wide travel required (Midlands base preferred due to contract locations).
Full Time, Permanent.
Band 4 / Up To £63,000 (dependent on experience).
Serco is looking for an experienced Information Security Manager (ISM) to play a pivotal role in strengthening information security across our Restart contract. This is an exciting opportunity for someone who wants to get hands‑on with operational security, influence contract delivery, and make a tangible impact across multiple sites.
Key Responsibilities
* Managing information security risk management processes
* Leading information security incident management and investigations
* Coordinating information security assurance activities
* Establishing and managing an Information Security Management Forum
* Take accountability for data protection matters, ensuring consistent application across contracts through a network of Data Protection Champions
* Ensuring ongoing compliance with ISO27001 certification/alignment and HMG security controls
* Conducting gap analysis against security frameworks, particularly ISO27001, and implementing remediation plans
* Supporting projects and solution designs by advising on security policy and HMG best practice, assurance requirements, technical security controls, physical security requirements and personnel and procedural controls
* Managing security documentation, risk registers, and audit evidence
* Coordinating security testing activities such as penetration tests and IT Security Health Checks
* Engaging with external auditors and assurance providers, supporting remediation actions where required
* Driving a culture of security awareness and data protection compliance across the contracts
Qualifications & Experience
* ISO27001 Lead Implementer and Lead Auditor certification
* Strong knowledge of data protection legislation (GDPR / Data Protection Act 2018)
* Experience managing information security risk and incident management
* Experience supporting or maintaining ISO27001 certified environments
* Ability to conduct security framework gap analysis and remediation planning
* Experience engaging with external security auditors and assurance providers
* Ability to work independently and manage multiple stakeholders
* Strong analytical and pragmatic problem‑solving skills
* Clear communication skills with the ability to translate complex security concepts for non‑technical audiences
* Strong organisational skills and ability to deliver outcomes to deadlines
* Ability to build trusted relationships with customers, stakeholders, and accreditors
* Ability to achieve and maintain BPSS clearance
Benefits
* Flexible working considered
* Pension – 6 %
* Chance to contribute to innovation in the public services
* A company passionate about diversity and inclusion
* Serco discounts (cinema, merlin entertainment, online shopping, mobile phone plans, leisure centre memberships)
* Health and wellbeing benefits (Employee Assistance Programme, Simply Health Cash Plans, etc.)
* Career development training (role‑specific training, leadership coaching, formal study)
* A safe and supportive culture
Diversity and Inclusion
Serco is committed to building a diverse and inclusive organisation and encourages applications from diverse candidates. We are a Disability Confident Leader employer and hold the Gold Inclusive Employer Standard. We support fair access to employment for those with unspent criminal convictions through the ‘Ban the Box’ pledge.
#J-18808-Ljbffr