17 of 17 Permanent Information Security Manager Jobs in the UK

Information Security Manager We are recruiting an Information Security Manager who will be a key member of the Healix Risk Department. You will be working across Healix International Group to manage all areas of data & information security compliance including the oversight and management of the firm's control framework relating to these … speciality areas. As the Information Security Manager you will design, implement & maintain the Information Security Management System (ISMS) in accordance with ISO27001, Cyber Essential Plus & SOC2 and other relevant standards. In a travel risk management environment this role is critical for safeguarding sensitive traveller data, real-time location tracking and operational systems that support crisis … to address these risks including the compilation of business continuity plans (BCP). You will work very closely with colleagues in IT to enhance the technology & control frameworks regarding information security compliance & cyber threat security. About Healix Healix safeguard's people's health and wellbeing in every corner of the world. We offer international risk management and assistance More ❯

embark on an exciting new career adventure? If you've a strong Cyber background and are looking for a new challenge we're on the hunt for a Technical Information Security Manager who'll work as part of our Information Security governance and oversight team. This technically focused role includes delivering our Information Security services (such as consultancy, assurance reviews and risk management) and providing governance and oversight across the business to effectively manage Information Security and Cyber risk. We're big on working flexibly - you'll spend most of your time working from home, with the occasional visit to the office, but of course, it's your choice - if you … A strong understanding and background in cyber and IT technologies and controls, as well as how they are designed and operate to manage and reduce risk. Experience in Microsoft security technologies, including endpoint and Azure. Risk and Governance : Ability to take high-level frameworks and security standards and translate them into more detailed control requirements. Act as a More ❯

I am currently working with a Charity who are seeking a Head of Information Security and Compliance. You will join an ambitious, focused and dynamic team who are passionate about how technology can enable our staff to deliver incredible support to the armed forces community. Role Purpose: The Information Security and Compliance Manager is responsible … for developing, implementing, and maintaining security policies, procedures, and controls to protect the data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and … mitigate risk associated with third parties with the focus being to protect the confidentiality, integrity, and availability of information assets. Key Responsibilities: Information Protection Take responsibility for their information and data protection policies, practices and settings to include sensitivity labels, data retention policies and data loss protection policies Collaborate with the Head of Risk, DPO and VCISO More ❯

I am currently working with a Charity who are seeking a Head of Information Security and Compliance. You will join an ambitious, focused and dynamic team who are passionate about how technology can enable our staff to deliver incredible support to the armed forces community. Role Purpose: The Information Security and Compliance Manager is responsible … for developing, implementing, and maintaining security policies, procedures, and controls to protect the data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and … mitigate risk associated with third parties with the focus being to protect the confidentiality, integrity, and availability of information assets. Key Responsibilities: Information Protection Take responsibility for their information and data protection policies, practices and settings to include sensitivity labels, data retention policies and data loss protection policies Collaborate with the Head of Risk, DPO and VCISO More ❯

CISM - Certified Information Security Manager Around the world, demand for skilled information security management professionals is on the rise, and the CISM certification is the globally accepted standard of achievement in this area. The uniquely management-focused CISM certification ensures holders understand business, and know how to manage and adapt technology to their enterprise and … industry. CISM holders are consistently recognized among the most qualified professionals in the information security and risk management fields. Effective Information Security Managers need to understand more than just Firewalls and Phishing. Having a clear Strategy and Roadmap with strong Governance and Charter is perhaps more important. Learn how to use COBIT methodology and security architectures like TOGAF and SABSA to build a value focused InfoSec programme with RiskIT and ValIT. Uniquely focused on the management and implementation of successful information security programmes, this event is more like an MBA than MSCE or CCNA! Objective: This workshop fully covers the current ISACA CISM exam syllabus by explaining how to use COBIT, ValIT More ❯

re not just revolutionising aviation-we're securing the future of clean flight. As we pioneer hydrogen-electric propulsion systems that will transform commercial aviation, we need a visionary Information Security Manager to protect our groundbreaking technology, intellectual property, and operational infrastructure. This is your opportunity to shape cybersecurity strategy at the forefront of sustainable aviation while … safeguarding systems that will decarbonise the skies. Join us in building robust security frameworks that will enable ZeroAvia to achieve certification, scale operations, and maintain the trust of aviation authorities, partners, and passengers as we deliver zero-emission flight solutions. We are seeking an experienced Information Security Manager to lead our comprehensive information security programme across our UK operations. In this critical role, you will develop and implement security strategies that protect ZeroAvia's hydrogen-electric propulsion technologies, certification data, and operational systems while ensuring compliance with aviation cybersecurity regulations including EASA EAR Part-IS, CAA requirements, and emerging aviation security standards. This position requires deep expertise in cybersecurity frameworks, aviation More ❯

Role title: Information Security Manager Reports to: Head of Operational Resilience Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Conduct Purpose of role Information Security Manager you will define and drive the information security strategy across our financial services business. You will … lead a growing team of security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Lead … the implementation and oversight of a 3rd party managed Security Operations Centre (SOC) ensuring effective integration. Baseline and conduct regular reviews with an incoming 3rd party managed SOC and the security tools in the Cloud environment (Defender and Sentinel) Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation More ❯

our tomorrow. So, ready to dive in? Your journey begins with that application - and who knows where it could take you in our vibrant team! Position The Role The Information Security Manager will be responsible for developing, implementing, and managing best practices in information security across M247. This role requires a deep understanding of data … management, information security frameworks, and regulatory compliance. The ideal candidate will have a proven track record in creating efficient security processes and play a key role in fostering a culture of security awareness throughout the organisation. Security Strategy Development: Design and implement a comprehensive information security strategy that aligns with business objectives and … complies with ISO 27001 standards. Microsoft 365 Expertise: Leverage Microsoft 365 tools to enhance security measures, ensuring optimal configuration and deployment to protect data and information assets. Data and Information Management: Oversee data governance policies and practices to ensure the integrity, confidentiality, and availability of sensitive information. Operational Efficiency: Identify opportunities to consolidate security processes and More ❯

Information Security Manager and Data Protection Officer Department: Engineering Employment Type: Full Time Location: Manchester, UK Reporting To: Daniel Wardin Interact provides enterprise-grade intranet software that connects over three million employees to leading global names like Levi's, Domino's, Teva Pharmaceuticals, and Technicolor. Our team of customer-focused problem solvers are passionate about helping organizations … a developer fresh out of college or a seasoned salesperson, we live the motto that we uphold for our customers: our people are our most valuable assets. As the Information Security Risk Manager & Data Protection Officer, you will be responsible for maintaining a corporate-wide, global information risk management program and information security compliance … led or SaaS businesses is highly desirable Will take ownership of SOC 2 compliance as we prepare for certification Comfortable managing compliance processes and working cross-functionally to meet security standards Strong knowledge of information security protocols and procedures Proficiency in information risk assessment and compliance Experience in technology environments, and cloud-based SaaS environments Strong More ❯

A well-established business is looking for an accomplished Information Security Manager to join its team based in Uxbridge, west London. Please note this is an office-based role, so you will work from the office 5 days per week. In this role of significant responsibility, you will design and lead the information security strategy … for the organisation. Supported by a Cyber Security Analyst you will provide InfoSec expertise, ensuring that the business has a secure, resilient and robust technology estate, and will also ensure that effective security governance policies and procedures are in place. In order to be suitable for this role, you must be a highly capable information security … record of delivering secure, compliant and robust systems and procedures. CISSP or similar accreditation would be highly advantageous to your application. Key responsibilities will include: - Evolving a cyber and information security strategy to achieve ISO27001 accreditation - Lead the design, implementation, and continuous improvement of the Information Security Management System (ISMS) - Work with senior stakeholders to ensure More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized More ❯

Information Security Manager (3 days/week, permanent pro-rata) Location: Leeds-hybrid (on-site 1-2 day/week, typically Mon/Tue) Reports to: VP, Information Security Team: 5 in security (within a wider UK tech org of ~25, multi-region) We’re looking for a hands-on InfoSec Manager to … take pressure off the VP, shape the control environment, and keep the security operations and compliance moving at speed. You’ll blend GRC and technical oversight , working closely with two security engineers (vuln scanning/IDS, external pen-test liaison) and two GRC specialists. What you’ll do Drive and extend ISO 27001 implementation/maintenance (UK certified … log ingestion/coverage , daily monitoring, and follow-up. Guide vulnerability management, alert triage (Alert Logic), and external pen-test cycles. Keep evidence flows tight: client questionnaires, audit responses, security awareness, and user access reviews. About you Strong GRC grounding plus solid technical understanding (AWS-heavy environment). Comfortable being hands-on where needed; people management nice-to-have More ❯

The WTW Procurement Sourcing Team are seeking an experienced IT Procurement professional to own the Cloud & Information Security category and drive commercial value, risk reduction, and supplier performance across a global stakeholder base. You will build and execute a 6–12-month category strategy and pipeline, lead complex sourcing and renewals spanning cloud infrastructure/services and cyber … months: size the opportunity, define value levers (cost, risk, performance), set KPIs, and maintain a visible, prioritized pipeline of sourcing events and renewals aligned to stakeholder and security roadmap goals. Embed ESG/diversity considerations and standardized ways of working that align with Procurement’s operating model. Sourcing, negotiation & contracting: Lead end-to-end sourcing projects or contract renewals … SRM with actions tracked to closure. Stakeholder engagement: build appropriate stakeholder relationships. The Requirements: Extensive experience in IT Procurement/Category Management (cloud services, software/SaaS, or cyber security). Strong record leading multi-stage sourcing and complex negotiations. Demonstrable a clear understanding of category planning capability (market analysis, segmentation, strategy, pipeline) and stakeholder management across business/ More ❯