Information Security Manager
We are looking for an experienced Information Security Manager to join our team of talented individuals, contributing to impactful projects that deliver the data, insights, and solutions needed to address complex challenges.
You'll be part of a dynamic, cross-functional team, working collaboratively to shape and implement strategies, policies, and procedures to strengthen our information and cyber security.
With a strong background in managing and delivering Information Security leadership within business and technology-led change projects, a pragmatic and proactive approach is key for this role. You will work with a small team across multiple sites, providing both strategic and day-to-day information security management, while driving continuous improvement in our security posture.
Your ability to guide others, promote a positive team culture, and support professional development will be essential. If you are ready to grow into a leadership position, we'll work with you to further develop your management skills alongside your technical expertise.
Main responsibilities include:
* Lead the organisation's Information Security programme, ensuring it is responsive, innovative, and cost-effective.
* Manage a small Information Security team and oversee the budget.
* Develop and maintain information security policies, standards, procedures, and guidance.
* Provide strategic threat management, including risk assessments, incident management, and internal reporting.
* Promote security awareness through training programmes for technical and non-technical staff.
* Assess and recommend technological upgrades and improvements to the information security environment.
* Communicate security goals and new initiatives effectively across departments.
We're looking for someone who has:
* Strong experience in an Information Security Management or equivalent role.
* Professional security qualification (e.g., CISSP, CISM) or relevant degree.
* Good knowledge of industry standard frameworks such as Cyber Essentials, GDPR, ISO27001, and NIST.
* Strong technical background in Cloud, Data Analytics, Security Technologies, and Application Security.
* Experience in managing and delivering Information Security leadership within business and technology-led change projects.
* The ability to identify and articulate Information Security risks and mitigating controls, including vulnerability and threat intelligence knowledge.
* Knowledge of enterprise security design, with experience in Microsoft security stack, Amazon Cloud Services, MS Azure, Windows, Linux, and leading ERP solutions.
* The ability to think critically about processes and procedures and adjust consistently as needed.
* Strong interpersonal skills, including listening and questioning skills.
* The ability to explain complex concepts in clear, straightforward terms to both technical and non-technical audiences.
* Excellent written and spoken English communication skills.
Job Type: Full-time
Pay: £50,000.00-£55,000.00 per year
Work authorisation:
* United Kingdom (required)
Work Location: In person