Information Security Manager

Information Security Manager (Advisory, Risk & Compliance)
London Hybrid (2-3 days per week onsite)
Up to 68,800 + 30 days annual leave + excellent pension

We are seeking an experienced Information Security Manager to join a forward-thinking organisation undergoing a significant transformation in its information security capability.

This is a high-impact, advisory-focused role where you will play a key part in strengthening security posture across a complex environment, embedding best practice, and influencing stakeholders at all levels.

The Role
As a senior member of the security function, you will lead on information risk, vulnerability management, and compliance, acting as a trusted advisor to both technical and non-technical stakeholders.
You will:
Provide expert guidance on information security risk and controls
Conduct and lead security risk assessments across systems and projects
Review and interpret technical vulnerability data and logs
Support compliance and regulatory requirements (e.g. data protection, audits)
Work closely with IT and business teams to embed security into processes and decision-making
Help shape and improve security policies, frameworks, and engagement processes
Act as a key point of contact for security advice and assurance

What We're Looking For
This role requires someone who can balance technical understanding with strong interpersonal skills.
You will:
Have a higher education background (essential)
Bring experience in information security risk, advisory, and compliance roles
Be comfortable interpreting vulnerability reports/logs and translating findings into action
Have knowledge of security frameworks such as ISO27001, NIST, or similar
Demonstrate experience in risk assessments, policy development, and security governance
Ideally hold or be working towards certifications such as CISM, CISSP, or CISA

Key Skills
Engaging and diplomatic communicator - able to influence without alienating
Skilled in encouraging behavioural change around security practices
Confident in challenging stakeholders constructively when required
Able to translate technical risk into clear, actionable insight
Strong stakeholder management across both technical and business teams
This role requires someone who can strike the right balance between guidance and governance - encouraging best practice while ensuring compliance where it matters most.

Why Apply?
Opportunity to shape and influence security strategy in a large-scale environment
Highly collaborative culture with strong stakeholder engagement
Excellent benefits including 30 days leave and a generous pension
Flexible hybrid working in London

If you're an Information Security professional who thrives in advisory, risk and stakeholder-focused roles, this is an excellent opportunity to make a real impact.

Send your CV to Laura at (url removed)

Services advertised are those of an Employment Agency