Information Security Manager – Technical
United Kingdom
Full Time
2 hours ago
$78,000 - $88,000 GBP
No H1B
Key skills
CloudAIStakeholder ManagementCommunicationPresentation SkillsPenetration Testing
About this role
Role Overview
- Lead our Information Security programme, managing ISO 27001 controls, cyber threat monitoring, and incident response while building a strong security culture and protecting critical systems across the organisation.
- Manage and oversee technical security controls to ensure compliance with ISO 27001:2022.
- Coordinate and manage penetration testing activities across the business.
- Support and manage security audits, assessments, and testing from a technical security perspective.
- Develop, implement, and maintain information security policies, procedures, and standards.
- Monitor threat intelligence and ensure the business is informed of emerging threats and appropriate remediation actions are taken.
- Analyse potential security threats and vulnerabilities, ensuring processes are in place to effectively manage incidents.
- Develop and test incident management procedures.
- Review existing security tools and technologies, recommending improvements where necessary.
- Identify, assess, and report on information security risks.
- Build a strong understanding of how the organisation operates in order to effectively support security initiatives.
- Build and maintain strong relationships with internal stakeholders, helping to promote and embed a strong security culture across the business.
Requirements
- Relevant security certification such as CISSP, CISM, or CRISC
- ISO 27001 Lead Implementor/Auditor certification or at least 3 years’ experience supporting an ISO 27001 accredited organisation
- Strong knowledge of security risk and control frameworks, including ISO 27001, PCI DSS, and ITIL
- Proven experience developing and implementing information security policies and procedures
- Deep understanding of security technologies and controls
- Experience reviewing security control effectiveness, assessing maturity, and recommending improvements
- Experience managing security incidents, service improvements, and IT security risks
- Understanding of the benefits and risks associated with AI
- Knowledge of Data Protection Act 2018 and GDPR
- Understanding of Disaster Recovery and Business Continuity planning
- Experience working with cloud technologies
- Strong stakeholder management skills
- Excellent communication and presentation skills, with the ability to influence and engage stakeholders at all levels.
Tech Stack
- Cloud
Benefits
- Perkbox from day 1!
- Discounts, bonuses and awards!
- 26 days paid holidays plus bank holidays, +1 day leave for every years service up to 30 standard days.
- Health and fitness, private medical insurance
- Following the successful completion of any probation period, membership to the company PMI & gym scheme is offered with the option to add additional family members.
- Discounted travel insurance policies with Staysure.
- 5% matched pension, auto enrolment after 3 months.
- Up to 5% annual bonus.
- Fantastic team social events, including parties and on-site social Fridays.
- Up to 2 milestone gifts per year.
- A subsidised on site canteen and Costa Coffee in Northampton.
- We'll support you with costs if you're someone who likes to cycle to work.
- We are committed to supporting our community and offer 1 day of volunteering a year for every employee.
- Health Assured who provide mental wellbeing support can be accessed through Perkbox.
- With the option to work from anywhere, colleagues can enjoy the benefit of travelling to new destinations.