About the job
Information Security Manager – London hybrid - £55,000 - £75,000 + Bonus + Benefits
Locke & McCloud are looking for an experienced Information Security Manager to join our client and lead their InfoSec operations. We’re looking for people strong in stakeholder management, risk assessment and mitigation, and a deep understanding of ISO 27001. The ideal candidate will play a crucial role in establishing, maintaining, and enhancing our clients information security program and strategy across the group.
Develop and maintain strong working relationships with key stakeholders across the organization, including senior management, IT teams, and business units.
Effectively communicate security requirements, policies, and procedures, and provide guidance on security best practices.
Identify and assess information security risks, vulnerabilities, and threats. Collaborate with stakeholders to develop and implement risk mitigation strategies and ensure that security controls are in place to protect critical assets.
Lead efforts to maintain ISO 27001 certification. Ensure that information security policies, procedures, and controls are aligned with ISO 27001 standards and regularly update our clients ISMS.
Develop, maintain, and update information security policies, standards, and procedures in accordance with industry best practices and regulatory requirements. Promote awareness and adherence to security policies throughout the organization.
Collaborate with internal and external auditors to facilitate security audits and assessments. Address audit findings and track remediation efforts.
Maintain accurate records of security-related activities and incidents. Generate regular reports on the state of information security and present findings to management.
Must have strong experience in information security, with a strong focus on risk assessment, stakeholder management, and ISO 27001 compliance.
In-depth knowledge of ISO 27001 and the ability to apply its principles effectively.
Strong understanding of security frameworks, such as NIST, and relevant regulatory requirements.
Experience advising key stakeholders and clients on security best practice and compliance.
CISSP, CISM, or similar certifications are beneficial.
Our client offers a generous benefits package including a guaranteed bonus scheme, company car allowance, healthcare, 28 days annual leave, a generous pension scheme, training and certification budgets, flexi-working, and more!