Information Security & Cyber Security Manager

Information Security & Cyber Security Manager

Location: London (Hybrid)

Reporting to: CTO

The client

My client is a profitable and fast-growing UK fintech on a mission to make financial services more accessible, transparent, and customer-centric. FCA Authorised and regulated, they specialise in responsible lending, using technology and data to deliver better outcomes for our customers while operating within a highly regulated environment.

A business in scale-up mode — with a modern technology platform, an expanding customer base, and a clear ambition to build a market-leading lending proposition. With around 100 employees, they combine the pace and ownership of a startup with the discipline required in financial services.

Role Purpose

Responsible for the design, implementation, operation and oversight our information security and cyber security framework, including governance, cyber security, IAM, operational resilience, supplier assurance and regulatory compliance.

You report directly into the CTO and have full ownership of this fintech's Info Sec and Cyber Security. You will also be this firm's first fulltime Info Sec lead, so setup of function and framework will be your responsibility. This is a rare opportunity for a fin tech this size.

You will also have the opportunity to face off to all relevant business leads in the firm.

Key Responsibilities

• Information Security Controls & Governance

• Information & Cyber Security Assurance

• FCA Compliance & Regulatory Security

• Identity & Access Management (Entra ID, Conditional Access, PIM, Intune, M365, AWS IAM)

• Cyber Security Strategy & Risk Management

• Cloud & Technology Security (AWS)

• Third-Party Risk Management

• Operational Resilience & Incident Management

• Security Awareness & Culture

• Penetration Testing

Essential Skills and experience

• Experience in Information Security, Cyber Security, Technology Risk or Security Governance

• Experience in FCA-regulated financial services

• Strong knowledge of ISO 27001, NIST and CIS Controls

• Strong understanding of Microsoft Entra ID and AWS security

• Experience conducting access reviews, risk assessments and supplier assurance

• Excellent stakeholder management skills

Success measures

• Mature Information Security Management Framework

• Robust access governance and certification processes

• Stronger security controls across Microsoft 365, Entra ID and AWS

• Improved operational resilience and regulatory compliance

• Effective board-level security reporting

Compensation

Salary: £75,000 – £100,000

Benefits: Private health insurance

Apply Now
Apply Now

Job Details

Company
Remote Recruit Services Limited
Location
London, South East, England, United Kingdom
Hybrid / Remote Options
Employment Type
Full-Time
Salary
£75,000 - £100,000 per annum
Posted