Enable job alerts via email!
Information Security Manager
context recruitment
City Of London
Hybrid
GBP 70,000 - 75,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading engineering firm in Central London is seeking an experienced Information Security Manager to oversee and enhance their cyber security management. The ideal candidate will bring essential ISO 27001 experience and a robust background in identifying security risks. This pivotal role involves liaising with internal teams, managing security policies, and ensuring a culture of awareness. The position initially requires 4 days onsite per week, reducing to 3 post-probation.
Qualifications
- Experience with ISO 27001 is essential.
- Strong background in cyber security management.
- Proven experience in identifying and mitigating security risks.
Responsibilities
- Ownership and maintenance of all security related policies and procedures.
- Liaise with external ISO27001 assessors and internal teams.
- Actively contribute to ISO processes, strategies and problem-solving.
Skills
Education
£70,000- £75,000 PA
Central London
Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming years.
The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements.
- Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the business
- Liaise with external ISO27001 assessors and internal teams to ensure smooth assessments
- Actively contribute to ISO processes, strategies and problem-solving
- Use prior ISO experience to support certification readiness
- Working closely with stakeholders across the business in relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap
- Handle varied and complex security challenges, from system reviews to high-level risk assessments
- Work closely with third‑party suppliers in relation to audits, forensic analysis and pen testing
- Experience with ISO 27001 is essential
- Strong background in cyber security management
- Proven experience in identifying and mitigating security risks
- Ability to make actionable recommendations for security improvements
- Experience with GDPR and data protection, together with knowledge of IS standards
- Security assessment frameworks (threat modelling, controls assessment, risk assessment)
- Relevant qualifications; CISSP, CISM or similar would be beneficial.
Based in Central London, 4 days per week onsite initially dropping to 3 once passed probation.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
