Information Security Manager
An impressive multinational business is looking for an Information Security Manager to join its team based in London. Please note the role is hybrid – you’ll be in the office 3 days per week with 2 days from home.The successful Information Security Manager will join a growing technology function and play a key role in strengthening the organisation’s security, compliance and resilience capabilities. Reporting to the Head of GRC, you will lead information security governance, assurance and risk management activities across the business, ensuring security controls, policies and processes remain effective, compliant and aligned with best practice.This is a highly visible role where you will work closely with senior stakeholders across technology and business teams, driving security risk assessments, compliance initiatives, business continuity planning and audit programmes. You will oversee regulatory and certification activities including ISO 27001, PCI DSS and NIS2, while ensuring identified risks are clearly communicated, prioritised and effectively remediated.The role offers significant exposure to cloud security governance, requiring a strong understanding of AWS and Azure environments and the ability to provide guidance on cloud-related risks and controls.We are looking for a confident and influential information security professional with a proven track record in governance, risk and compliance, information security auditing and enterprise risk management. You will possess excellent stakeholder management skills, the ability to translate technical issues into business language and a passion for continuously improving security maturity across the organisation.Professional certifications such as CISSP, CISM, CRISC or ISO 27001 Lead Auditor/Implementer are desirable, alongside experience operating within complex enterprise environments.This is an excellent opportunity to join a collaborative, forward-thinking organisation where your expertise will directly influence information security, business resilience, regulatory compliance and cyber security strategy.