A leading professional services organisation is looking for an Information Security Officer with strong governance, risk, and compliance experience. This is a standalone role with real ownership - ideal for someone ready to step up and shape a growing security function.The RoleBuild and mature security frameworks (ISO 27001, CE+, NIST, SOC 2)Lead gap analysis and audit readinessOwn the security risk register and drive mitigationDevelop policies, standards, and proceduresSupport ISO 22301/business continuityCoordinate internal/external audits and evidence gatheringManage vendor risk and customer due-diligence requestsProvide independent governance oversight (separate from IT Ops)About YouStrong experience with ISO 27001 (Annex 8), CE+, and risk managementBackground in audits, incident response, and governance documentationConfident working with Compliance, IT, and external partnersAble to own initiatives and work independentlyPragmatic, collaborative, and business-mindedWhy Apply?High visibility and autonomyOpportunity to shape security governance during transformationSupportive, flexible cultureClear progression for someone wanting more ownershipIf this sounds like the right next step for you, please send your CV to Andy Dale at Arcas.