Cyber Security Operations Manager

Are you an experienced Information Security Manager looking for your next big challenge? Want to lead a talented team and shape the future of security at ARAG? If you are enthusiastic about combining strategy with hands‑on technical know‑how, this role is for you! You will take the lead on our information security operations, setting the direction for everything security related. From developing and implementing frameworks that meet ISO27001:2022 and ARAG Group standards to directly managing a high‑performing InfoSec team, you will make sure security‑first thinking is embedded across the business. Working closely with Digital Services and other teams to keep us resilient, agile, and ahead of emerging threats, your role will cover everything from driving compliance programmes, assessing risk and building scalable frameworks to leading vulnerability testing and incident response across the UK, Canada, and Ireland, making this a global opportunity.

You will also present strategic insights to senior leadership, champion secure‑by‑design principles, and represent ARAG in technical forums. You will manage the team and other colleagues to keep ARAG secure, resilient, and ahead of the game when it comes to all aspects of Information Security.

You will be a proactive leader who thrives at the intersection of tech, governance, and collaboration. You know your stuff when it comes to modern security frameworks and technologies and are confident influencing everyone from engineers to execs, changing your tone as needed. You will be able to dive into technical challenges alongside your team and not be afraid to be hands‑on.

• Deep expertise in ISO27001:2022, NIST CSF, Cyber Essentials, and OWASP principles.
• Firsthand experience with SIEM, IDS/IPS, IAM, NAC, patch management, and anti‑malware tools.
• Strong grasp of incident response, vulnerability management, and Zero Trust architecture.
• Familiarity with cloud platforms such as Azure and SaaS.
• Excellent communication skills – translate complex security topics into clear, actionable insights for both technical and non‑technical colleagues.
• Preferred: CISSP certification and/or ISO/IEC 27001 Lead Implementer or Auditor credentials.
• A desire to deepen expertise through continuous development.

• 27 days holiday with the option to buy up to a further 5 days.
• Private medical insurance.
• Company pension scheme with the option to increase contributions.
• Group income protection for all employees.
• Group legal protection for all levels.
• Motor and home emergency assistance.
• Inclusion in our health cash plan.
• Salary sacrifice benefits, including cycle to work.

At ARAG, we invest in our people and embrace innovative technologies. We encourage independent thinking, ownership of work, and continuous development. Our team is friendly, professional, and dedicated to delivering excellent service for our customers. If you're seeking an environment where teamwork and forward‑thinking go hand in hand, ARAG is the place for you.