×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant

Information Assurance Security Manager ( IASM

Job in Cowbridge, Vale of Glamorgan, CF71, Wales, UK
Listing for: DXC Technology
Full Time position
Listed on 2026-01-15
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant
Job Description & How to Apply Below
Position: Information Assurance Security Manager ( IASM)

Job Description:

Information Assurance Security Manager

Location:
Gloucester - on site 5 days per week

Vetting: UK National eligible for security clearance

At DXC Technology, delivering excellence for our customers and colleagues is more than just a motto, it’s something we strive towards constantly through our work. Every day we deliver mission critical services in a secure environment whilst promoting our people first agenda, a real sense of community and a healthy work-life balance. Our consistently positive customer feedback and continuous growth helps us cement our place as one of the world’s leading IT solutions enterprises, helping us deliver services and solutions in both challenging and exciting situations.

We believe that hiring a diverse team is crucial to our success and our recruiting decisions are based on your skills and experience as an individual. We actively encourage consistent growth on our journey towards a culture of inclusion and recognise that the people we employ are vital to providing a great customer experience. As such, we have a variety of training, support, and tools available to aid in your continual personal and professional development.

Our ongoing goal is to drive innovation and modernise operations across the board, which includes furthering the skills of our colleagues. At DXC, building a better you, builds a better us.

The role:

At DXC, one of our platinum accounts has an opening for an Information Assurance Security Manager. The successful candidate will work within multiple teams and will be innovative and analytical with a good eye for detail. Your role will include implementing standards, policies, and procedures for continual service improvement. We are looking for someone who has all round skills in information security risk management.

Role responsibilities:
  • Working closely with service delivery teams, monitor compliance of existing services with defined security controls, identifying non-compliances, determining the preferred route to remediation, and monitoring and reporting on the progress of associated actions
  • Advise risk owners as to the severity of the risks associated with any such non-compliances, and where necessary discussing potential mitigation strategies (and their impacts) to enable them to make informed risk management decisions
  • Monitor implementation and ongoing maintenance of agreed risk management BAU activities (e.g. patching)
  • Maintain the risk assessment and related artefacts such as the risk register and security-specific documentation such as Security Operating Procedures through life
  • Assess the security impact of changes to the service, reflecting agreed changes in security documentation
  • Create and deliver regular reports regarding the security posture of the service being delivered
  • Assist the Account Security Lead with creating and maintaining security-related processes, policies and guidance
  • Proactively identifying areas for improvement in security across the account, both to improve security, and make good security easier
What you will bring to the team:
  • Several proven years experience in a similar or related role with desirable additional qualifications to include CISM or CISSP / IISP or other professional body membership
  • Experience of working to HMG (e.g. NCSC guidance, DSIT Secure by Design, GovS 007) best practices
  • Desire to improve processes, looking for the root cause of a problem
  • Willingness to both share your knowledge and learn from others
  • A proactive approach towards looking for risks and problems, and solving them
  • A strong team working ethic, with a “customer first” focus and a thirst for knowledge
Desirable Skills and Technologies:
  • A good knowledge and understanding of information and cyber security risk management
  • Knowledge of threat modelling utilising STRIDE or Attack Trees
  • Knowledge of the NIST Cyber Security Framework
  • Knowledge of various technology stacks including Cloud (AWS, MS Azure), M365, VMWare, Redhat Openshift or other container orchestration platforms, Windows and Linux operating systems
  • Knowledge of industry security guidance provided by the likes of OWASP and CIS
  • Awareness of security champions programmes
What we will do…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search