Enable job alerts via email!
Information Security Manager | Compliance & Risk
Burness Paull LLP
Scotland
On-site
GBP 80,000 - 100,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading law firm in the UK is seeking an experienced Information Security Officer to enhance security strategies and governance. This high-impact role involves leading risk management efforts and ensuring compliance with ISO 27001:2022 and UK data protection laws. The ideal candidate will have a solid background in information security management, excellent communication skills, and experience in engaging with senior stakeholders. The role is based in Scotland, with opportunities in Aberdeen, Edinburgh, or Glasgow.
Qualifications
- Proven experience in information security management within professional services.
- Strong knowledge of UK GDPR and the Data Protection Act 2018.
- Experience with audits and certifications.
Responsibilities
- Develop and maintain information security strategy aligned to ISO standards.
- Lead security risk management and board level reporting.
- Support business continuity and disaster recovery testing.
Skills
Do you have the skills and vision to strengthen information security while influencing stakeholders across a leading law firm?
We are looking for an experienced Information Security Manager in either Aberdeen, Edinburgh or Glasgow. This is an exciting opportunity to lead our firm wide security strategy, governance and operations. Working with Partners, the COO, IT and Business Services, you will maintain ISO 27001:2022 accreditation, strengthen resilience and safeguard client confidentiality.
This role will allow you to develop and maintain our information security strategy and control framework aligned to ISO 27001:2022, UK GDPR and the Data Protection Act 2018, Law Society of Scotland and SRA Standards and Regulations, and relevant NCSC guidance. You will lead on information security related risk management, board level reporting and security metrics, and oversee audits, certifications and client due diligence and you will support the COO in leading on business continuity and disaster recovery testing, host external audits and client assessments, and support bids by articulating our security posture.
You have proven experience in information security management within professional services, ideally a UK law firm or other regulated environment, with strong knowledge of UK GDPR, the Data Protection Act 2018, Law Society of Scotland and SRA requirements, and relevant NCSC guidance. You are an excellent written and verbal communicator with partners, clients and auditors.
This is a high impact role with strategic influence, broad responsibility and direct engagement with senior stakeholders. You will champion a culture of accountability and continuous improvement, backed by an organisation committed to excellence and client service.
Full details can also be found in our job specification.
If you have any questions or would like to discuss this opportunity in more detail, please contact Jo McMonagle at Jo.McMonagle@burnesspaull.com or on 0141 273 6988.
Burness Paull reserves the right to close this vacancy early if a sufficient number of applications are received for this role. Therefore, if you are interested, please submit your application as early as possible.
Closing Date: 12 December 2025
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
