Overview
The Risk and Information Governance Department plays a critical role in ensuring the SRA's compliance with regulatory and security standards. We work collaboratively across the organisation to manage risk, protect information assets, and uphold the highest standards of governance and assurance.
The Role
This is an exciting opportunity to lead and manage the SRA's ISO:27001 certified Information Security Management System (ISMS). As Information Security Manager, you'll be a subject matter expert, providing strategic advice and operational support to ensure robust information security practices are embedded across the organisation.
You'll work closely with IT Security, Risk, and Governance colleagues to assess and manage risks, investigate incidents, and deliver assurance activities. You'll also lead internal audits, maintain compliance with PCI DSS, and manage external certification processes.
This role is ideal for someone with strong analytical skills, excellent stakeholder engagement experience, and a deep understanding of ISO:27001 and information security frameworks.
What’s in it for you
* Lead the development and implementation of a certified ISMS
* Collaborate with senior stakeholders across the organisation
* Be part of a forward-thinking team focused on continuous improvement
* Influence strategic decisions and drive security awareness
What we’re looking for
* Strong knowledge of ISO:27001 and experience managing an ISMS
* Recognised security qualification (e.g. CISM)
* Experience in risk assessment, incident management, and internal auditing
* Ability to interpret vulnerability scans, penetration tests, and IT health checks
* Excellent communication and stakeholder management skills
* Knowledge of Data Protection legislation
* Experience in a regulatory environment
* Familiarity with IT service and project management practices
Useful and additional information
There is a full role profile attached to the bottom of this advert on our website. This is a hybrid role and based in our Birmingham office 1-2 days a week.
The salary offer for this role will be from £43,427 to £50,000 per annum. We are recruiting for this role on a full-time basis, working 35 hours per week. If you have any questions that aren't in this advert or on our website, please contact us via .
To apply
Please click 'apply' to complete the online application form and upload a CV and cover letter, addressing how you meet the essential criteria listed under the 'what we are looking for' section above.
To find out more about the recruitment and selection process and how to make the most of your application, please visit our jobs pages.
Closing date for applications is on the 10 November 2025 at 9:00 am
Job details
* Seniority level – Mid-Senior level
* Employment type – Full-time
* Job function – Legal
* Industries – Legal Services
#J-18808-Ljbffr