Information Security Manager

At Specialist Risk Group (SRG), we specialise in delivering expert risk solutions for complex, high-stakes challenges across a range of sectors. From insurance and professional indemnity to bespoke risk management services, our work demonstrates both precision and adaptability, reflecting our commitment to helping clients navigate even the most demanding scenarios.

Our dedication to excellence and innovative thinking underpins everything we do. Guided by our mantra, “Difficult. Done Well.”, we tackle challenges that others shy away from, delivering solutions that are both robust and forward-thinking.

Powered by a team of highly skilled specialists, we combine deep industry knowledge and strategic insight to turn complex problems into practical, actionable solutions. We work closely with our clients, understanding their ambitions and risks, to provide tailored strategies that support growth, resilience, and long-term success.

With a focus on collaboration, expertise, and precision, SRG shapes the way organisations manage risk—transforming complexity into opportunity and helping clients achieve outcomes they can rely on.

We’re looking for a strategic and experienced Information Security Manager to lead the development and delivery of SRG’s information security programme. You’ll play a key role in protecting our systems, data, and operations across the Group, ensuring compliance with regulatory requirements and industry standards. This is a high‑impact role where your expertise will shape our security posture and support our continued growth.

• Designing and implementing security policies and procedures aligned with ISO 27001, NIST and other frameworks.
• Managing the information security risk register and leading internal and external audits.
• Overseeing incident response, including investigation, containment and recovery.
• Conducting vendor security assessments and reviewing contractual security clauses.
• Leading daily security operations including access control, vulnerability management and endpoint protection.
• Building and mentoring a new security team and driving organisation‑wide awareness training.

• Extensive experience in information security management and risk assessment.
• Strong knowledge of ISO 27001, NIST and other security frameworks.
• Proven ability to lead incident response and manage security operations.
• Excellent stakeholder management and communication skills.
• Experience building and mentoring security teams.
• Relevant certifications such as CISSP, CISM or ISO 27001 Lead Implementer are desirable.

• 25 days holiday plus an extra half‑day off to celebrate your birthday month.
• Company pension scheme to help secure your future.
• Private medical cover for peace of mind.
• Life insurance, income protection and sick pay to support you when you need it.
• Charity and volunteering days so you can give back to causes you care about.

At SRG, our colleagues are at the heart of everything we do. We pride ourselves on fostering an inclusive, respectful culture, one where people feel empowered, valued and equipped for growth. We embrace new ideas, adapt to challenges and celebrate shared success.

We’re committed to making our recruitment process and workplace accessible to everyone. If you have a disability or require any adjustments, whether during the hiring process or in your day‑to‑day role, we’ll work with you to ensure you have the support you need. Just let us know how we can help.