Enable job alerts via email!
Security Manager
JR United Kingdom
Gloucester
Remote
GBP 60,000 - 80,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A leading company is seeking a proactive Security Manager to oversee the security strategy for a major UK Public Sector digital programme. This pivotal role demands extensive expertise in security frameworks and the ability to manage risks effectively throughout the project's lifecycle, ensuring governance compliance and alignment with privacy frameworks.
Qualifications
- In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, Cabinet Office security best practices.
- Proven track record across full security lifecycle: risk management, governance, incidents, pen testing.
- Experience working in the UK Public Sector, ideally with the NHS/NHSE.
Responsibilities
- Acting as primary security lead for the Digitalisation programme.
- Producing monthly security governance reports and managing risk registers.
- Leading security incident response, from detection to resolution.
Skills
Education
Tools
Job description
Social network you want to login/join with:
Security Manager – Digital Transformation (Inside IR35)
We’re looking for a proactive and highly experienced Security Manager to lead the security strategy for a major UK Public Sector digital programme. If you’re passionate about embedding security by design, managing risks at scale, and ensuring alignment with governance and privacy frameworks, this role will put you at the heart of a high-impact transformation.
? Location: UK, Remote
? Contract Type: Inside IR35
Responsibilities
?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions
? Producing and presenting monthly security governance reports, risk registers, and security cases
️ Leading risk assessments, managing mitigation controls, and contributing to DPIAs
? Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle
?️ Feeding into control design activities—DevSecOps, threat modelling, workshops, and design reviews
? Managing and coordinating penetration testing and remediation efforts
? Leading security incident response for the programme, from detection to resolution
? Running tailored security awareness training for teams
? Maintaining continuous oversight of emerging threats, vulnerabilities, and ensuring swift action
? Supporting alignment with future certification frameworks such as GovAssure, NCSC CAF, ISO27001
Requirements:
? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices
Proven track record across full security lifecycle: risk management, governance, incidents, pen testing
?️ Experience working in the UK Public Sector, ideally with the NHS/NHSE and government design principles
️ Hands-on experience in Agile/DevOps settings using tools like Jira and Confluence
Bonus Points ?
? Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer/Auditor
? Familiarity with NHS-specific or healthcare-related data protection requirements
Deadline for applications is 30.05.2025 (17:00.)
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
