Information Security Manager

🔒 Confidential Employer
Posted 13 August 2025
LOCATION
United Kingdom
TYPE
Full-time
LEVEL
Mid-Senior level
CATEGORY
Security
This employer holds a UK Home Office sponsor license — sponsorship for this specific role is at the employer’s discretion

SKILLS

Risk Management Incident Response Vulnerability Management Security Frameworks Security Audits SIEM Firewalls

FULL DESCRIPTION

Summary

An Information Security Manager is sought by [Employer hidden — view at passion-project.co.uk] to develop, implement, and manage information security programs. Key responsibilities include conducting risk assessments, managing incidents, leading security teams, and aligning security strategy with business objectives. Expertise in security frameworks, risk management, and incident response is required.

Key Responsibilities/Duties

  • Developing, implementing, and managing information security programs to protect organizational assets
  • Conducting risk assessments and security audits to identify vulnerabilities and ensure compliance with security standards
  • Overseeing security incidents, coordinating response teams, and managing post-incident reviews to improve security posture
  • Leading and mentoring security teams to ensure best practices are followed and security goals are achieved
  • Collaborating with senior leadership to align information security strategy with overall business objectives and regulatory requirements

Core Requirements/Qualifications/Skills

  • Proven experience as an Information Security Manager or in a senior security role
  • Strong knowledge of security frameworks (e.g., ISO 27001, NIST, SOC 2) and regulatory compliance requirements (e.g., GDPR, PCI-DSS)
  • Expertise in risk management, incident response, and vulnerability management
  • Experience with security tools such as SIEM, firewalls, endpoint protection, and encryption technologies
  • Certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Implementer are highly desirable

What You’ll Be Working On:

  • Developing, implementing, and managing information security programs to protect organizational assets
  • Conducting risk assessments and security audits to identify vulnerabilities and ensure compliance with security standards
  • Overseeing security incidents, coordinating response teams, and managing post-incident reviews to improve security posture
  • Leading and mentoring security teams to ensure best practices are followed and security goals are achieved
  • Collaborating with senior leadership to align information security strategy with overall business objectives and regulatory requirements

What We’re Looking For:

  • Proven experience as an Information Security Manager or in a senior security role
  • Strong knowledge of security frameworks (e.g., ISO 27001, NIST, SOC 2) and regulatory compliance requirements (e.g., GDPR, PCI-DSS)
  • Expertise in risk management, incident response, and vulnerability management
  • Experience with security tools such as SIEM, firewalls, endpoint protection, and encryption technologies
  • Certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Implementer are highly desirable
Sign up free — access 45,000+ UK sponsor-licensed jobs