Judopay is a new-age payments platform. We build and design the technology that enables payments for brands like KFC, Hiscox, Foxtons and AutoCab.
You'll be joining the company at a pivotal time in our growth as we expand our payment offering over the next 12 months. Focusing on reducing complexity across the entire payment chain, you'll help some of the UK's leading brands launch new payment products, reduce fraud and identify innovative ways for them to tackle business challenges through their in-app, online and face-to-face payments.
We are seeking a highly capable and detail-oriented
Security Manager
to lead and manage all aspects of information security and compliance at Fabrick UK. This role will be central to maintaining and advancing our security posture in accordance with key frameworks and certifications including
PCI-DSS 4.0, ISO27001:2022,
and
Cyber Essentials Plus
The ideal candidate will be responsible for overseeing internal and external audits, coordinating with Fabrick (our head office), and ensuring that all security policies, controls, and processes are fit for purpose, up to date, and consistently enforced.
Responsibilities
* Own the end-to-end continuous maintenance of
ISO27001:2022
,
PCI-DSS 4.0
, and
Cyber Essentials Plus
* Act as the primary point of contact for all internal and external security audits
* Develop, review, and update security policies, procedures, and guidelines in line with current standards and evolving threats
* Cooperate with the Holding's Risk Management function, to address any risks arising from the Risk Management Process
* Prepare, manage, and deliver documentation, reports, and evidence for
scheduled and ad hoc audits
* Work closely with internal teams (DevOps, Support, Engineering) to implement and monitor security controls, tools, and alerts
* Support incident response planning and testing, including the execution and continuous refinement of Fabrick UK's
Cyber Incident Response Plan
and
Business Continuity Plan
* Act as the
primary security liaison
between Fabrick UK and Fabrick's central security team
What We're Looking For
* 5+ years of proven experience in an Information Security or Governance role within a regulated or high-security environment (preferably fintech or payments)
* Deep understanding of
PCI-DSS 4.0
,
ISO27001:2022
,
Cyber Essentials Plus
, and security best practices
* Experience leading internal and external audits
* Understanding of risk management, security operations, and incident response
* Excellent documentation, organizational, and communication skills
* Familiarity with regulatory requirements in the UK and EU (e.g., GDPR, NIS2, DORA)
* Industry certifications (e.g., CISSP, CISM, ISO27001 Lead Implementer/Auditor) are highly desirable
Benefits
* Competitive salary
* Uncapped Holiday - upon successful completion of probation
* Private medical healthcare - upon successful completion of probation
* Internal and external training
* Birthdays off
* Mental Health Self Care Days
* Personalised career development plan
* Cycle to work scheme.
* Pension
* Very cool office in the heart of Hoxton with hybrid working policy in place
* Very delightful office dogs
* Enhanced parental leave policies
* Eyecare vouchers