Information Security Manager (Advisory, Risk & Compliance)
Up to £67,950 + 30 days annual leave + excellent pension
We are seeking an experienced Information Security Manager to join a forward-thinking organisation undergoing a significant transformation in its information security capability. This is a high-impact, advisory-focused role where you will play a key part in strengthening security posture across a complex environment, embedding best practice, and influencing stakeholders at all levels.
The Role
As a senior member of the security function, you will lead on information risk, vulnerability management, and compliance, acting as a trusted advisor to both technical and non‑technical stakeholders.
You will:
- Provide expert guidance on information security risk and controls
- Conduct and lead security risk assessments across systems and projects
- Review and interpret technical vulnerability data and logs
- Support compliance and regulatory requirements (e.g. data protection, audits)
- Work closely with IT and business teams to embed security into processes and decision-making
- Help shape and improve security policies, frameworks, and engagement processes
- Act as a key point of contact for security advice and assurance
What We're Looking For
This role requires someone who can balance technical understanding with strong interpersonal skills.
- Bring experience in information security risk, advisory, and compliance roles
- Be comfortable interpreting vulnerability reports/logs and translating findings into action
- Have knowledge of security frameworks such as ISO27001, NIST, or similar
- Demonstrate experience in risk assessments, policy development, and security governance
- Ideally hold or be working towards certifications such as CISM, CISSP, or CISA
Qualifications
- Have a higher education background (essential)
- Bring experience in information security risk, advisory, and compliance roles
- Be comfortable interpreting vulnerability reports/logs and translating findings into action
- Have knowledge of security frameworks such as ISO27001, NIST, or similar
- Demonstrate experience in risk assessments, policy development, and security governance
- Ideally hold or be working towards certifications such as CISM, CISSP, or CISA
Key Skills
- Engaging and diplomatic communicator – able to influence without alienating
- Skilled in encouraging behavioural change around security practices
- Confident in challenging stakeholders constructively when required
- Able to translate technical risk into clear, actionable insight
- Strong stakeholder management across both technical and business teams
- This role requires someone who can strike the right balance between guidance and governance — encouraging best practice while ensuring compliance where it matters most.
Why Apply?
- Opportunity to shape and influence security strategy in a large‑scale environment
- Highly collaborative culture with strong stakeholder engagement
- Excellent benefits including 30 days leave and a generous pension
- Flexible hybrid working in London
If you're an Information Security professional who thrives in advisory, risk and stakeholder-focused roles, this is an excellent opportunity to make a real impact. Send your CV to Laura at lramm@itecopeople.co.uk
Services advertised are those of an Employment Agency
#J-18808-Ljbffr