Information Security Manager
Contract Type
Permanent
Working Pattern
Full time
Working Hours
35 hours per week
Salary
£43,427 to £50,000 per annum
Location Options
Birmingham
Function Type
Corporate Functions (HR, Finance, Project Management, IT, Risk and Audit)
About the Department
The Risk and Information Governance Department plays a critical role in ensuring the SRA's compliance with regulatory and security standards. We work collaboratively across the organisation to manage risk, protect information assets, and uphold the highest standards of governance and assurance.
The Role
This is an exciting opportunity to lead and manage the SRA's ISO:27001 certified Information Security Management System (ISMS). As Information Security Manager, you'll be a subject matter expert, providing strategic advice and operational support to ensure robust information security practices are embedded across the organisation.
You'll work closely with IT Security, Risk, and Governance colleagues to assess and manage risks, investigate incidents, and deliver assurance activities. You'll also lead internal audits, maintain compliance with PCI DSS, and manage external certification processes.
This role is ideal for someone with strong analytical skills, excellent stakeholder engagement experience, and a deep understanding of ISO:27001 and information security frameworks.
What's in it for you
* Lead the development and implementation of a certified ISMS
* Collaborate with senior stakeholders across the organisation
* Be part of a forward-thinking team focused on continuous improvement
* Influence strategic decisions and drive security awareness
What we're looking for
Essential:
* Strong knowledge of ISO:27001 and experience managing an ISMS
* Recognised security qualification (e.g. CISM)
* Experience in risk assessment, incident management, and internal auditing
* Ability to interpret vulnerability scans, penetration tests, and IT health checks
* Excellent communication and stakeholder management skills
* Knowledge of Data Protection legislation
Desirable:
* Experience in a regulatory environment
* Familiarity with IT service and project management practices
Useful and additional information
There is a full role profile attached to the bottom of this advert on our website. This is a hybrid role and based in our Birmingham office 1-2 days a week
The salary offer for this role will be from £43,427 to £50,000 per annum. We are recruiting for this role on a full-time basis, working 35 hours per week. If you have any questions that aren't in this advert or on our website, please contact us via recruitment@sra.org.uk.
To apply
Please click 'apply' to complete the online application form and upload a CV and cover letter, addressing how you meet the essential criteria listed under the 'what we are looking for' section above.
To find out more about the recruitment and selection process and how to make the most of your application, please visit our jobs pages .
Closing date for applications is on the 10 November 2025 at 9:00 am
The SRA is the independent regulator of solicitors and law firms in England and Wales, protecting consumers and supporting the rule of law and the administration of justice. We do this by overseeing all education and training requirements necessary to practise as a solicitor, licensing individuals and firms to practise, setting the standards of the profession and regulating and enforcing compliance against these standards.
We offer an inclusive, supportive and friendly working environment and the chance to develop your career within a professional organisation. We are committed to the health and wellbeing of staff, helping everyone to strike a good balance between personal and professional life.
Additionally, we provide a generous flexible benefits package, an excellent defined contribution pension scheme and an additional 3% of annual basic salary upon successful completion of probation.
Attached Role Profile
InfoSec Manager JD (1).docx - 542KB Opens in a new window
Converted File InfoSec Manager JD (1).docx.pdf - 82KB Opens in a new window
Vacancy closing date: 10/11/2025, 09:00
The Solicitors Regulation Authority is an Equal Opportunities Employer.
Diversity and inclusion is central to everything we do. We are actively committed to promoting and participating in good practice in the way that we attract, recruit and retain staff.
Everyone is encouraged to bring their whole self to work because we appreciate the value that a truly diverse workforce brings to an organisation. We celebrate difference, recognising the benefits this brings to our inclusive culture, including age, disability, gender identity and expression, religion, race, sex, sexual orientation and socio economic background.