Enable job alerts via email!
Information Security Manager | Compliance & Risk
Burness Paull
Aberdeen City
On-site
GBP 60,000 - 80,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading UK law firm in Aberdeen is seeking an experienced Information Security Officer to lead their firm-wide security strategy and manage compliance with UK GDPR and ISO standards. The role involves significant stakeholder engagement and a commitment to excellence in client service, making strategic decisions that impact the firm's operations. Candidates should have proven experience in information security management within a regulated environment.
Qualifications
- Proven experience in information security management within professional services.
- Strong knowledge of UK GDPR, the Data Protection Act 2018.
- Excellent written and verbal communicator with partners, clients, and auditors.
Responsibilities
- Lead the firm-wide security strategy governance and operations.
- Maintain ISO 27001:2022 accreditation and strengthen resilience.
- Oversee audits, certifications, and client due diligence.
Skills
Do you have the skills and vision to strengthen information security while influencing stakeholders across a leading law firm?
We are looking for an experienced Information Security Manager in Aberdeen, Edinburgh or Glasgow. This is an exciting opportunity to lead our firm‑wide security strategy governance and operations. Working with Partners, the COO IT and Business Services you will maintain ISO 27001:2022 accreditation, strengthen resilience and safeguard client confidentiality.
This role will allow you to develop and maintain our information security strategy and control framework aligned to ISO 27001:2022, UK GDPR, the Data Protection Act 2018, the Law Society of Scotland, the SRA Standards and Regulations, and relevant NCSC guidance. You will lead on information security related risk management board‑level reporting and security metrics, oversee audits, certifications and client due diligence, and support the COO in leading on business continuity and disaster recovery testing, host external audits and client assessments, and articulate our security posture to bids.
You have proven experience in information security management within professional services, ideally a UK law firm or other regulated environment with strong knowledge of UK GDPR, the Data Protection Act 2018, the Law Society of Scotland and SRA requirements and relevant NCSC guidance. You are an excellent written and verbal communicator with partners, clients and auditors.
This is a high‑impact role with strategic influence, broad responsibility and direct engagement with senior stakeholders. You will champion a culture of accountability and continuous improvement backed by an organisation committed to excellence and client service.
Full details can also be found in our job specification.
If you have any questions or would like to discuss this opportunity in more detail please contact Jo McMonagle.
Burness Paull reserves the right to close this vacancy early if a sufficient number of applications are received for this role. Therefore, if you are interested please submit your application as early as possible.
Closing Date : 12 December 2025
Required Experience : Manager
Employment Type : Full‑Time
Experience : years
Vacancy : 1
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
