Information Security Manager

Job Description

Information Security Manager will protect the confidentiality, integrity, and availability of our systems and data. You’ll support the secure delivery of projects, conduct risk assessments, oversee third‑party security engagements, and shape our evolving security posture. This is a hands‑on role ideal for strategic thinking and rolling up sleeves.

• Advise and support project teams to embed security best practices throughout the project lifecycle.
• Scope, manage, and track remediation of penetration testing and vulnerability assessments.
• Maintain application security processes, standards and guidelines. Translate application security policies into security requirements.
• Conduct and document security risk assessments on changes, threats, vulnerabilities, and new initiatives.
• Perform third‑party vendor risk assessments and ongoing security reviews. Assist in identifying and assessing new security technologies and vendors.
• Lead or support the response to security incidents, including investigation, containment, root cause analysis, and reporting.
• Support compliance and alignment with ISO 27001, Cyber Essentials, SWIFT, NIST and other relevant frameworks.
• Communicate effectively with stakeholders including engineers, product managers, operations team, senior management, and auditors about the information security posture, risks, and mitigation strategies.

• Minimum 8 years’ experience in information security roles, ideally in the financial sector.
• Bachelor’s degree or higher in Computer Science or equivalent industry experience.
• CISSP certification required; additional certifications (e.g. CEH, OSCP, AWS Security) are a plus.
• Strong understanding of security in software development and application security (OWASP, SDLC, Dev Sec Ops ).
• In‑depth experience with threat analysis and incident response.
• Experience with ISO 27001, Cyber Essentials, and preferably NIST CSF, SOC 2, or SWIFT frameworks.
• Hands‑on, pragmatic approach with the ability to operate in a lean, fast‑paced environment.
• Excellent communication skills, engaging both technical and non‑technical stakeholders.
• Innovative mindset with passion for staying current in the evolving cyber landscape.
• Experience working in or with regulated financial institutions is desirable.

• Be part of a small, agile, and collaborative team where impact is direct and visible.
• Opportunity to work on cutting‑edge financial services and security projects.
• Competitive salary and benefits, including training and development support.
• Hybrid working arrangements and a culture that values innovation and initiative.

• Hybrid working
• Contributory personal pension plan:
  Minimum 2% employee, 5% employee max, 7% employer match, 10% employer max.
• Life Assurance – 4 times annual salary
• Group Income Protection
• Private Medical Insurance – cover for partner and/or children at company cost; includes Optical, Dental and Audiology
• Discretionary Bonus
• Competitive Annual Leave
• 2 Volunteering Days
• Benefit Hub