Information Security Manager
£65000 – £75000
Remote working – very occasional travel may be required.
About Us
We are an ambitious financial services organization committed to helping our clients achieve financial happiness through unmatched understanding and control of their finances. Currently we are navigating a significant transformation programme, we’re evolving our technology and services to better serve our community for years to come.
The Role
An internal promotion which is likely to become permanent has resulted in the need to back fill the role of Information Security Manager. It is highly likely this role will also become permanent, but we prefer to be transparent so we are coming to market offering an initial 9 month fixed term contract.
We are supporting our existing employee by enabling their ability to step back to their old role should they wish to.Given the first month in their new post and their strong performance we see very little likelihood in that occurring, but our culture is to support our team and keep our word.
As a senior member of our Cyber Security team, you’ll play a pivotal role in safeguarding our organization’s information assets while supporting our broader transformation goals. Reporting to the Head of IT & Security, you’ll ensure the ongoing development and maintenance of our Information Security Management System and Cyber Security framework, aligning with industry standards including ISO 27001, NIST CSF, and PCI-DSS.
Key Responsibilities
- Lead the development and management of our Information Security Management System and Cyber Security framework
- Manage internal and external security audits, ensuring compliance with regulatory requirements
- Conduct third-party due diligence and security risk assessments
- Develop and deliver information security awareness training for all colleagues
- Prepare incident response reports and manage security breaches
- Own the information security risk register and ensure appropriate risk treatment
- Perform regular threat assessments to evaluate the effectiveness of technical controls
- Assist with Operational Resilience programme activities including tabletop testing
- Work with our Cyber Security Consultant to develop and refine incident response playbooks
- Create security metrics for various stakeholders including executive leadership
What You’ll Bring
- Relevant information security qualifications (CISSP, CISM, CEH, CPSA, or CompTIA Security+)
- Experience with security frameworks including ISO 27001, Cyber Essentials, and NIST CSF
- Strong understanding of risk management, GDPR, and PCI DSS requirements
- Experience in third-party supplier security management
- Excellent analytical skills with ability to interpret complex technical information
- Knowledge of security technologies including firewalls and endpoint protection
- Understanding of operational resilience disciplines
- Strong communication skills, with ability to engage technical and non-technical audiences
- Adaptability to work effectively in a fast-paced transformation environment
What We Offer
- The opportunity to shape security strategy during a transformative period
- A collaborative team environment where your expertise will be valued
- Professional development and growth opportunities
- The chance to make a meaningful impact on our clients’ financial wellbeing
- Competitive salary and benefits package
- Job security
Hurren & Hope specialist recruitment are our chosen talent partners for this campaign, speculative approaches via agencies or individuals will be forwarded to them in the first instance.
