1 to 25 of 225 Information Security Management Jobs in the UK

About the job you're considering As a Security Manager, you will be the focal point of contact for any security matters on client engagements. With diverse clients covering a vast expanse of industry sectors, a day in the life of a Capgemini Security Manager is never dull. The role requirements vary from client to client and … sits within a wider Managed Services function, residing in the Cloud Infrastructure Services (CIS) UK business line. You will have the opportunity to interact with our global team of security experts, from Architects to Engineers, Analysts to Compliance Managers. Outreach in CIS doesn’t just stop at security, as we actively encourage our staff to engage with other … back 3 continuous years, and unspent criminal record check (known as Disclosure and Barring Service) Your role As a part of our fantastic Cyber Delivery team, comprising of 45+ security professionals, you will aid in delivering crucial security services and be accountable for the end-to-end management of security issues and incidents, acting as a More ❯

Social network you want to login/join with: The GRC Consultant (Cyber Assurance/Security Operations Manager)is primarily responsible for ensuring the security controls (people, process, technology) are in place and operating as designed. The primary aim is the design, development, test and evaluation of information security throughout its lifecycle. This is to ensure … is enabled in a safe and secure manner based on the alignment of identified risks to the acceptable risk posture of the business. What you'll be doing: Providing security expertise across security standards and accreditations, measure and control the effectiveness of the security controls framework and maintain the Information Security Management System. Deriving … and delivering documented Information Security Management Plans which incorporate Regulatory, Legal and Compliance in relation to applicable security policies. Standards and guidelines Assisting with the identification of identified risks and emerging cyber security vulnerabilities and threats. The subsequent analysis to quantify and lead risk mitigation plans Work with Service Management to ensure that partners More ❯

Information Security Compliance Officer Required Qualifications & Certifications: Education Bachelor's degree in Cybersecurity, Information Technology, Computer Science , or a related field. A master's degree in information security , Risk Management, or Compliance is a plus. Certifications (Highly Valued) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA … Certified Information Systems Auditor) ISO 27001 Lead Auditor/Implementer CRISC (Certified in Risk and Information Systems Control) GDPR Certification (e.g., IAPP CIPP/E, CIPM for data protection compliance) Experience Requirements: 3-5+ years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data … Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications under GDPR). Key Skills & Technical Knowledge: Deep More ❯

these things to build a strong, successful business and our door is always open to new talent ready to contribute to our growth and evolution. About the Role The Information Security Manager (ISM) will be responsible for developing, implementing, and maintaining ME+EM’s information security program. Reporting to the CTO, this role will involve managing risk … assessments, monitoring compliance, and embedding a robust security culture throughout the organisation. The ISM will act as the primary subject matter expert on information security, ensuring policies are up-to-date, practical, and enforced, and will communicate security risks and opportunities for improvement directly to senior management. Responsibilities : Cyber Security Strategy & Governance Implement and refine … the organisation’s cyber security strategy, aligned with business objectives and risk appetite. Lead the development and maintenance of a comprehensive Information Security Management System (ISMS). Define and review metrics and KPIs to monitor the effectiveness of security controls. Policy Management Draft, maintain, and enforce all information security policies, procedures, and More ❯

Social network you want to login/join with: Information Security Manager, Hemel Hempstead Client: Smiths Detection Location: Hemel Hempstead, United Kingdom Job Category: Other EU work permit required: Yes Job Reference: 376df29f590f Job Views: 52 Posted: 24.06.2025 Expiry Date: 08.08.2025 Job Description Smiths Detection is a global authority on detection and screening technology, helping to protect people … and infrastructure worldwide. We are committed to providing security solutions to safeguard society from threats such as explosives, weapons, contraband, and chemicals. Based at our Centre of Excellence in Hemel Hempstead, the Information Security Manager for NW Europe will oversee the maintenance of our Information Management System, ensuring effective management of physical, personnel, enterprise … IT, and product security risks. This high-profile role involves leading information security activities, collaborating with global and local teams, and maintaining strong relationships with our high-profile customers. Responsibilities Develop and maintain the Information Security Management System for NW Europe. Ensure compliance with national and customer security policies. Collaborate with Group Business More ❯

Job Role: Information Security Manager Reporting to: CTO Location: Head Office, White City Place, West London Contract type: Full Time, 37.5 hours per wee k About the Company ME+EM is one of the UK’s fastest-growing luxury fashion brands. As a direct-to-consumer business we operate in a truly omnichannel way, with an extremely successful online … these things to build a strong, successful business and our door is always open to new talent ready to contribute to our growth and evolution. About the Role The Information Security Manager (ISM) will be responsible for developing, implementing, and maintaining ME+EM’s information security program. Reporting to the CTO, this role will involve managing risk … assessments, monitoring compliance, and embedding a robust security culture throughout the organisation. The ISM will act as the primary subject matter expert on information security, ensuring policies are up-to-date, practical, and enforced, and will communicate security risks and opportunities for improvement directly to senior management. Responsibilities : Cyber Security Strategy & Governance Implement and refine More ❯

Job Role: Information Security Manager Reporting to: CTO Location: Head Office, White City Place, West London Contract type: Full Time, 37.5 hours per wee k About the Company ME+EM is one of the UK’s fastest-growing luxury fashion brands. As a direct-to-consumer business we operate in a truly omnichannel way, with an extremely successful online … these things to build a strong, successful business and our door is always open to new talent ready to contribute to our growth and evolution. About the Role The Information Security Manager (ISM) will be responsible for developing, implementing, and maintaining ME+EM’s information security program. Reporting to the CTO, this role will involve managing risk … assessments, monitoring compliance, and embedding a robust security culture throughout the organisation. The ISM will act as the primary subject matter expert on information security, ensuring policies are up-to-date, practical, and enforced, and will communicate security risks and opportunities for improvement directly to senior management. Responsibilities : Cyber Security Strategy & Governance Implement and refine More ❯

that celebrates new ideas and diverse perspectives. You can experience a world of opportunity and the chance to shape a career as unique as you. Position Summary WSP's Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes … the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our clients. The role of Regional Information Security Officer reports directly to the Business Information Security Officer and is responsible for delivering the Information Security Framework into the applicable region of WSP. This … is primarily an internally facing role, although some interaction with clients and third parties may be required. This position requires a senior management professional with relevant experience and a strong working knowledge of IT security, risk management, regulatory compliance, information and public cloud service technology, IT operations management principles, and third-party security management. More ❯

and keep our own thinking in tune with the world in which we operate. Office: London (hybrid - 2 days in the office per week) Duration: 12 month FTC The Information Security Team is a central support unit responsible for providing a complete security service to the Walkers. The Security Engineer will report to Information Security Operations Manager and work with the Information Security Operations team for implementing and maintaining our security controls and tools. Work collaboratively with other departments to improve our security posture. They will be specifically responsible for completing the implementation of a number of strategic based security solutions for new security tooling or existing. The … engineer will also participate in security related service management processes (incident, change and problem management) and will participate in the planning, design, enforcement and review of security controls which protect the integrity of Walkers IT. “The ideal candidate will have worked within a Legal, Financial Services organisation or a similarly regulated company.” There will be an More ❯

Information Security Compliance Analyst 12 Month Fixed Term Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS … AI Act and GDPR. You will ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk … execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security More ❯

Lead Information Security Analyst/Engineer to £55k + Benefits ISO27001, COBIT, SECURITY, ITIL, CISM, CISSP, PCI-DSS Lead Information Security Engineer/Analyst: Do you have a background working in an IT Security function Do you have a broad technical skill set and are able to identify and remediate threats or vulnerabilities, implement … information security strategies to mitigate risk, and put process in place to alleviate security issues? Do you have a background in Governance and maintaining up-to-date policies and procedures? Are you passionate about technology, with a strong customer service ethos, focused on keeping abreast with Information Security Management frameworks and standards ( ISO2701, COBIT … ITIL) Lead Information Security Engineer/Analyst About the company: Do you want to be part of a successful organisation, that strives to offer stable, sustainable, and thriving communities in their local area. They have a vision and purpose to make a difference by the services they offer across a variety of services in their local area. With More ❯

Information Security Manager - Corporation Join to apply for the Information Security Manager - Corporation role at Nest pensions Information Security Manager - Corporation Join to apply for the Information Security Manager - Corporation role at Nest pensions Role Overview We're looking for a pragmatic, risk focussed Information Security Manager to work within … Nest and maintain our ISO 27001 certified corporation Information Security Management System (ISMS). We sit in the second line of defence and advise the business on security risks, incidents, audits, assurance and the implementation and monitoring of security controls that protects Nest. You'll have a solid background in information security management … concepts to non-technical people. Please note the minimum criteria for this role is: Practical experience of operating certified ISMS using ISO 27001/2, NIST CSF and other security standards in the design and management of information security controls. Practical experience working with third party suppliers to audit and evidence compliance with security policies More ❯

of the brightest and nicest people around - check out our Glassdoor reviews. If this sounds like your cup of tea, we would love to hear from you! For more information check out our blog to see if you would like to help us prevent crime and protect the world's biggest online businesses. The Role Our data is a … to our success and of great importance to our clients, our partners and to our team. This is why we are currently looking for someone to help evolve the security function. As the Information Security Manager in the team, you will be working with our Security engineers as well as other teams and stakeholders to drive … improvements to our security program and ensure a pragmatic approach to security and risk. Responsibilities Develop, implement, and maintain the organization's information security policies, standards, and procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the Information Security Management System (ISMS). Oversee More ❯

The opportunity We're looking for an Information Security Manager to take ownership of Attest's security posture as we scale. Our consumer research platform helps brands make better decisions,keeping our data, people, and customers secure is critical to our success. If you're excited about shaping security in a fast-growing SaaS company - without … us to collaborate in person, while ensuring enough time remotely for deep, focussed work. Learn more about our hybrid working philosophy here . What You'll Do As our Information Security Manager, you will define and implement security strategies, ensuring we maintain a strong security foundation without slowing down innovation. You'll work cross-functionally with … Engineering, IT, and Legal to embed security across the business, enhance compliance, and proactively manage risks. Key Responsibilities Develop and implement security strategy : aligning security plans with business goals. Own our security program: building and maintaining an information security management system. Promote security culture : working closely with IT to educate and enable More ❯

Information Security Manager Hybrid – MOD Abbey Wood, Bristol Full Time, Permanent Competitive salary plus benefits Join Serco’s UK & Europe division as an Information Security Manager in our Armed Forces Recruitment Service (AFRS) team and take operational ownership and accountability for information security management processes for Defence opportunities. In this role, you will … deliver, manage, and audit the cyber security aspects of contracts in accordance with MOD Secure by Design standards. You will oversee the extensive security arrangements for Serco partners and subcontractors, ensuring their compliance with MOD standards. Additionally, you will ensure adherence to data protection legislation through close collaboration with contract Data Protection Champions and senior management. At Serco … source. Main responsibilities of the role: Engage with key industry partners and suppliers to ensure ongoing compliance with MOD standards (e.g., Secure By Design, DefStan 05-138). Conduct information security risk assessment and management using recognized frameworks such as NIST SP800. Perform information security assurance activities and manage incidents. Establish and manage internal and More ❯

Job Title: Information Security Manager Basis: Full-time, permanent Location: Canary Wharf, London - WeWork Reporting to: Co-founder About Onetrace Great products start with great people. Our relentless focus on user experience has been the cornerstone of our growth, helping us become the market leading software for fire protection subcontractors across the UK. We've grown by staying … ideas matter, and your work shapes what comes next. Want to learn more about our journey? Check out our LinkedIn page. About the Role We're looking for an Information Security Manager to lead the systems, practices, and frameworks that protect Onetrace's data, people and infrastructure as we grow. This is a cross-functional, hands-on role … with a strong strategic lens -you'll own our information security posture end-to-end, ensuring we maintain our ISO 27001 accreditation, while preparing for other relevant accreditations (such as SOC2 and Cyber Essentials). You'll proactively manage risks and help create a secure environment where teams can move fast without compromising on trust or safety. You More ❯

The team you'll be working with: The Security Architect will be responsible for the design, implementation and ongoing development of the security architecture of the client's IT systems. The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to: - Identify business objectives, user needs, risk appetite and cyber security obligations - Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls - Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice What you'll be doing: Develop, deliver and continually enhance a coherent approach to the design of secure client … end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments More ❯

in the Development and maintenance of IT resilience and business continuity plans to ensure the organisation's ability to respond to and recover from IT disruptions. Incident Response and Management: Provide support in DR related incident response activities, including investigating IT security incidents, breaches, and disruptions. Issue Identification: Identify and document control deficiencies, compliance gaps, and areas for … and corrective action plans to address identified issues. Documentation and Reporting: Maintain accurate documentation of risk assessments, compliance reviews, control testing activities, and remediation efforts. Prepare regular reports for management and stakeholders on the status of risk, compliance, and control activities. Policy and Procedure Development: Assist in the development and maintenance of risk management, compliance, and control-related … policies, procedures, and guidelines. Ensure alignment with regulatory requirements and industry best practices in alignment with the Global IS Governance Lead. Vendor Risk Management Support: Assist in assessing and managing risks associated with third-party vendors and service providers. Evaluate vendor controls and adherence to contractual obligations. Continuous Improvement: Identify opportunities for enhancing risk management, compliance, and control More ❯

Vodafone Newbury, England, United Kingdom Join or sign in to find your next job Join to apply for the Security & Compliance Senior Manager role at Vodafone Vodafone Newbury, England, United Kingdom 2 days ago Be among the first 25 applicants Join to apply for the Security & Compliance Senior Manager role at Vodafone Get AI-powered advice on this … the opportunities to help you belong and make a real impact. What You’ll Do The primary focus of the role will be to ensure best-in-class technical security consultancy to Vodafone across a wide range of IT, network & telecoms solutions and services. You need to be able to solve complex and multi-dimensional problems, adopting a risk … assurance for the IOT product portfolio with specific responsibility to ensure that Cyber governance, policies and standards are in place and effective. The role will require experience in technical security architectural best practice and the ability to identify technical controls improvements to positively uplift the security posture of IOT. Deep understanding of the IT and Network systems development More ❯

Date: 01.08.2025 col-wide Job Description: Job Description The team you'll be working with: As a strategic and leadership role you will be instrumental in shaping and driving security and risk programs to align with internal business objectives as well as industry good practice (including Secure by Design aligned to UK Government principles) and regulatory requirements (including GovAssure … to GRC challenges, applying agile methodologies to adapt to new regulations, compliance requirements and business change Advise on and foster continuous improvement and effectiveness of GRC processes, driving improved management information to better allow appropriate prioritisation and risk based decisions Lead initiatives that build a culture of accountability and responsibility across engagements Enhance governance processes and advise on … how best to evidence alignment with regulatory requirements (such as NCSC CAF) and industry good practice (including Secure by Design) Providing security expertise across security standards and accreditations, measure and control the effectiveness of the security controls framework and maintain the Information Security Management System. Deriving and delivering documented Information Security Management More ❯

Are you currently working for an IT provider but ready to step into the world of dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance … Team's service offerings forward. Work with a innovative, industry-leading Cyber Security team Play a key role in the development of internal and client security programs Contribute to significant projects that support clients' compliance and risk management goals If you're ready to make an impact in Cyber Security, this role is for you! Responsibilities … Ensure protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including vendor security reviews Assist the Sales Team with scoping engagements and delivering More ❯

My client, an International bank, based in London, is looking for an Information Security Analyst to join it's team. Three MUST for this role: 1) Three days per week in the office 2) They dont offer sponsorship 3) You must come from banking or financial services background About the Information Security Analyst role: To assist … the Branch Information Security Officer in developing and maintaining the Branch ISMS, and in providing a professional responsive service to assist management in identifying and mitigating information security risks which could seriously impact the Bank. This includes the provision of expert advice, oversight, and assurance on, the selection, design, justification and operation of information security controls and management strategies to maintain the confidentiality, integrity, availability, accountability, and relevant compliance of information systems with legislation, regulation, and relevant standards, in concert with Bank Head Office alignment. KEY RESPONSIBILITIES To maintain Information Security assurance activity (structured and unstructured) to assess and report on divergence from policy or agreed standards (control More ❯

We are looking for a hands-on Information Security Professional with extensive practical experience in information security best practices and application in an enterprise cloud SaaS environment. The ideal candidate will have a strong background in AWS, experience with ISO 27001, SOC 2, and the ability to communicate the importance of information security across … enterprise in cloud software-as-a-service (SaaS), leveraging cutting-edge technology to deliver exceptional solutions hosted on Amazon AWS. We are committed to maintaining the highest standards of information security to protect our clients and uphold our reputation in the industry. We are seeking a dedicated and experienced Information Security Professional to join our team … and lead our information security initiatives. Autologyx is a data driven workflow and process automation platform that enables businesses to orchestrate, automate, integrate and scale, complex non-linear processes. We allow customers to build and design solutions to automate complex processes. This is achieved by providing the tools to create relational data models, a canvas for designing your More ❯

About You Do you thrive on shaping information security goals and setting the direction and vision of information security, specifically in a hybrid cloud environment? Does identifying potential security vulnerabilities across multiple platforms and planning remediation activities come as second nature to you? Do you have the technical security expertise to ‘shift left’ when … it comes to increasing the maturity of information security operations as part of cloud development? Do you have hands-on experience managing information, cybersecurity incidents, and data breaches? If so, then you could be just what we are looking for. Read on to find out more... The Role As Head of Information Security at Heywood … your role will be to develop, shape and update the Company’s information security capability, ensuring our hybrid cloud environment remains secure against an ever-changing threat landscape. Key responsibilities include: Information security strategy Continue to develop the Information Security Strategy, ensuring alignment to the Company’s IT strategy and business goals and create More ❯

Social network you want to login/join with: Head of Information Security, manchester col-narrow-left Client: Heywood Location: manchester, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job Description: About You Do you thrive on shaping information security goals … and setting the direction and vision of information security, specifically in a hybrid cloud environment? Does identifying potential security vulnerabilities across multiple platforms and planning remediation activities come as second nature to you? Do you have the technical security expertise to ‘shift left’ when it comes to increasing the maturity of information security operations … as part of cloud development? Do you have hands-on experience managing information, cybersecurity incidents, and data breaches? If so, then you could be just what we are looking for. Read on to find out more... The Role As Head of Information Security at Heywood, your role will be to develop, shape and update the Company’s More ❯