Information Security Manager (Advisory, Risk & Compliance)
London | Hybrid (2-3 days per week onsite)
Up to -68,800 + 30 days annual leave + excellent pension

We are seeking an experienced Information Security Manager to join a forward-thinking organisation undergoing a significant transformation in its information security capability.

This is a high-impact, advisory-focused role where you will play a key part in strengthening security posture across a complex environment, embedding best practice, and influencing stakeholders at all levels.
________________________________________
The Role
As a senior member of the security function, you will lead on information risk, vulnerability management, and compliance, acting as a trusted advisor to both technical and non-technical stakeholders.
You will:
* Provide expert guidance on information security risk and controls
* Conduct and lead security risk assessments across systems and projects
* Review and interpret technical vulnerability data and logs
* Support compliance and regulatory requirements (e.g. data protection, audits)
* Work closely with IT and business teams to embed security into processes and decision-making
* Help shape and improve security policies, frameworks, and engagement processes
* Act as a key point of contact for security advice and assurance
________________________________________
What We''re Looking For
This role requires someone who can balance technical understanding with strong interpersonal skills.
You will:
* Have a higher education background (essential)
* Bring experience in information security risk, advisory, and compliance roles
* Be comfortable interpreting vulnerability reports/logs and translating findings into action
* Have knowledge of security frameworks such as ISO27001, NIST, or similar
* Demonstrate experience in risk assessments, policy development, and security governance
* Ideally hold or be working towards certifications such as CISM, CISSP, or CISA
________________________________________
Key Skills
* Engaging and diplomatic communicator - able to influence without alienating
* Skilled in encouraging behavioural change around security practices
* Confident in challenging stakeholders constructively when required
* Able to translate technical risk into clear, actionable insight
* Strong stakeholder management across both technical and business teams
This role requires someone who can strike the right balance between guidance and governance - encouraging best practice while ensuring compliance where it matters most.
________________________________________
Why Apply?
* Opportunity to shape and influence security strategy in a large-scale environment
* Highly collaborative culture with strong stakeholder engagement
* Excellent benefits including 30 days leave and a generous pension
* Flexible hybrid working in London
________________________________________
If you''re an Information Security professional who thrives in advisory, risk and stakeholder-focused roles, this is an excellent opportunity to make a real impact.

Send your CV to Laura at (url removed)

Services advertised are those of an Employment Agency