Salary: £65,000 - 75,000 per year Requirements: ISO 27001 Lead Implementer or Lead Auditor (mandatory) Strong GRC background with proven delivery of ISO 27001-compliant ISMS Experience with UK government security requirements and procurement processes Understanding of construction-industry security risks and regulation Broad knowledge of security frameworks and best practice Bachelors degree in computer science (or related discipline) One of CISSP / CISM (preferred) / CISA (preferred) Experience with Power BI is an advantage Responsibilities: Own and implement our ISMS to achieve ISO 27001K accreditation Develop, implement and maintain our ISO 27001-aligned ISMS and attain certification Report on control effectiveness and drive continuous improvement Run regular security risk assessments and gap analyses to identify vulnerabilities Track remediation of identified vulnerabilities in policies, procedures, and configurations Create and maintain security policies, procedures, and controls for specific projects Act as the primary liaison to project teams and security managers Lead audits and reviews to confirm with Professional Standards Deliver guidance and training on security best practices and compliance Conduct supplier due-diligence and security assessments Technologies: Power BI Security More: We are looking for an experienced Information Security Specialist to join our team in Leatherhead on a permanent basis. In this role, you will help strengthen our governance, risk, and compliance (GRC) capability and improve our ISO 27001 Information Security Management System (ISMS). We offer a competitive salary package of £65-75K based on experience, along with additional benefits. Our company values inclusivity and welcomes applicants from all backgrounds. last updated 13 week of 2026