270 Information Security Manager jobs in the United Kingdom

Information Security Manager

Location: Central Bristol
Job Type: Full-time, Hybrid (2 days per week in-office)
Salary: 60,000 - 70,000 + Benefits

We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information risk and resilience, while managing a skilled internal team and driving alignment with industry standards and best practice.

Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations.

• Lead and manage a team of three security professionals , supporting their development and day-to-day delivery.
• Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials).
• Shape and implement the company's information security strategy , including policy, tooling, and training.
• Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects.
• Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response .
• Support regulatory and internal audits, contributing clear documentation and continuous improvement.
• Collaborate with internal teams and external partners, including service providers and the organisation's parent company.

• Demonstrable experience in information security leadership , including line management or team leadership .
• In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory/compliance frameworks.
• Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) .
• Strong communication skills and stakeholder management abilities.
• Experience in incident response and enterprise risk reporting.
• Professional certifications such as CISSP or ISO27001 Lead Implementer/Auditor (desirable).

• Hybrid working (2 days per week in-office)
• Generous annual leave & pension contributions
• Life assurance and private health options
• Training budget and career development support
• Collaborative, supportive team culture

If you're ready to lead a team, shape an enterprise-wide security programme, and work at the heart of a well-established organisation, we'd love to hear from you.

Apply today - successful applicants will be contacted within 24-48 working hours.

Information Security Manager

Location: Central Bristol
Job Type: Full-time, Hybrid (2 days per week in-office)
Salary: £60,000 - £70,000 + Benefits

We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to informati.

WHJS1_UKTJ

Information Security Manager

£65000 - £7000

Remote working - very occasional travel may be required. (1-3 days a month average)

South Cambridge

About Us

We are an ambitious financial services organization committed to helping our clients achieve financial happiness through unmatched understanding and control of their finances. Currently we are navigating a significant transformation programme, we re evolving our technology and services to better serve our community for years to come.

The Role

As a senior member of our Cyber Security team, you'll play a pivotal role in safeguarding our organizations information assets while supporting our broader transformation goals. Reporting to the Head of IT & Security, you'll ensure the ongoing development and maintenance of our Information Security Management System and Cyber Security framework, aligning with industry standards including ISO 27001, NIST CSF, and PCI-DSS.

Key Responsibilities

• Lead the development and management of our Information Security Management System and Cyber Security framework
• Manage internal and external security audits, ensuring compliance with regulatory requirements
• Conduct third-party due diligence and security risk assessments
• Develop and deliver information security awareness training for all colleagues
• Prepare incident response reports and manage security breaches
• Own the information security risk register and ensure appropriate risk treatment
• Perform regular threat assessments to evaluate the effectiveness of technical controls
• Assist with Operational Resilience programme activities including tabletop testing
• Work with our Cyber Security Consultant to develop and refine incident response playbooks
• Create security metrics for various stakeholders including executive leadership

What you'll Bring

• Relevant information security qualifications (CISSP, CISM, CEH, CPSA, or CompTIA Security+)
• Experience with security frameworks including ISO 27001, Cyber Essentials, and NIST CSF
• Strong understanding of risk management, GDPR, and PCI DSS requirements
• Experience in third-party supplier security management
• Excellent analytical skills with ability to interpret complex technical information
• Knowledge of security technologies including Firewalls and endpoint protection
• Understanding of operational resilience disciplines
• Strong communication skills, with ability to engage technical and non-technical audiences
• Adaptability to work effectively in a fast-paced transformation environment

What We Offer

• The opportunity to shape security strategy during a transformative period
• A collaborative team environment where your expertise will be valued
• Professional development and growth opportunities
• The chance to make a meaningful impact on our clients financial wellbeing
• Competitive salary and benefits package
• Job security

Hurren & Hope specialist recruitment are our chosen talent partners for this campaign, speculative approaches via agencies or individuals will be forwarded to them in the first instance.

Information Security Manager

Location: Newport
Job Type: Full-time, Hybrid (1 day per week)
Salary: 60 - 70K plus 10% bonus

We are seeking an Information Security Manager to join our client's IT team. This role is crucial in ensuring IT risks are identified, measured, and actively managed to protect the organisation from potential impacts. You will develop and implement IT policies, conduct risk ass.

WHJS1_UKTJ

INSTANDA - pushing the boundaries of Insurance Technology.

About us:

INSTANDA is the world’s first no-code cloud-based platform, we are changing the way Insurers can design and deliver insurance products to market, allowing them to configure new products at speed completely disrupting the legacy norms in the industry.
INSTANDA has grown significantly in recent years, and we are now a team of 180+ employees primarily based in the UK and US, with partnerships that operate worldwide. We're continuing to grow our business, and Client Delivery is at the forefront of our growth plans, with partnerships that operate worldwide.  

Our company was built by looking at the world through a different lens and our culture today reflects that by encouraging you to be yourself, speak your mind, and share your opinions. We want people who want to push themselves, be part of something great, and be prepared to challenge themselves if they think there is a better way. Collaboration sits at the heart of how we operate, it has fuelled our growth enormously and our aim to be ‘world class’. People at INSTANDA not only have a real sense of shared ownership but are granted share options to benefit from our long-term success making everyone an owner of the business.

So if this sounds like the place you can thrive in and grow your career, please keep reading!

Follow us to learn more: Instanda.com  | LinkedIn  | Twitter  | YouTube

About the role:

We’re looking for an experienced Information Security Manager who will lead, plan and execute our InfoSec strategy.  You will play a key role in assuring the activities of INSTANDA and a number of our 3rd Party partners. Competent around technology, security frameworks and the cyber threat environment, you will own assurance processes, contribute to a multitude of projects and be involved in decision making.

Your input will be critical to the maintenance and development of Information Security compliance and assurance across the INSTANDA estate and across 3rd parties. A self-starter, you will be comfortable with ambiguity and a lack of detail and be someone who can develop concepts and work with a broad array of individuals and problems. Playing a leading role within InfoSec, with your reach and activity enabling security as a principal consideration across INSTANDA.

Responsibilities will include:

• Overseeing the INSTANDA information security management system (ISMS) including the implementation and maintenance of the ISMS across the business;
• Be a key member of the ISO27001 Steering Committee;
• Engage with external security service providers to ensure support is at the required standards and in line with our business needs;
• Create and maintain security documentation to support the sales process with our clients, and responding to their questions as a respected SME;
• Design and implement the internal security education and awareness programmes;
• Drive the maturity of existing security controls across multiple teams, and in collaboration with colleagues across INSTANDA;
• Proactively identify opportunities to mentor and develop colleagues on all aspect of InfoSec, and;
• Collaborate effectively within internal colleagues in security critical roles to ensure InfoSec is embedded and understood.

Requirements

You’ll have demonstrable, proven experience within the following areas:

You’ll be a proactive self-starter, with a proven track record of building and owning an InfoSec strategy; running your own projects. You’ll effectively manage stakeholders, demonstrating high levels of resilience as you seek to influence at all levels within our business whilst managing multiple simultaneous workstreams.

Accreditation in at least one of the following:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Auditor (CISA)
• Certified Information Security Manager (CISM)

Security Frameworks: you’ll have experience delivering and/or maintaining the following key frameworks: ISO 27001, Cyber Essentials, PCI DSS and SOC2. You'll have an excellent understanding of InfoSec best practice in these areas.

Audits: You have experience of working with internal and external auditors during audits for relevant frameworks and client audits;

Assurance Principles: y ou will play a central role in the maintenance of 3rd party assurance, providing InfoSec guidance to Project Managers; Account Managers and individuals who are looking to work with external firms to drive INSTANDA business operations forward.

Stakeholder Management: your ability to influence and educate others on InfoSec principals and best practice is fundamental to this role. You’ll be engaging laterally and vertically with multiple internal stakeholders within INSTANDA to Executive level.

Cyber Threats: you will have proven knowledge around industry developments and adjustments to the nature and character of cyber threats.  

Networking Principles: at times, you’ll need to influence decisions on the design and implementation of changes to the INSTANDA networks, based on your understanding of data flows and network principles, as well as your grasp of security frameworks and controls in place.

Benefits

• Competitive salary
• Generous 28 days holiday allowance, in addition to public holidays.
• For every year of service you complete, we’ll give you an additional days holiday (max. 5 days)
• One Dynamic Day per month on top of your holiday allowance to spend time doing the things you want to do or simply catching up with life admin.
• Remote & Hybrid approach varying with the nature of your role.
• Life cover; income protection and participation in the company pension scheme
• £100 per month to put towards wellness activities.
• Annual learning & development allowance of £1,250
• Free access to LinkedIn learning and Microsoft ESI learning platforms

Additional Information:

This is a UK based role, you must be eligible to live and work in the UK without restriction. We are unable to offer sponsorship.

Please apply directly online

We are not working with any agencies or staffing firms for this role - please do not contact us.

At Clarion, our people are at the absolute heart of what we do. We’re proud that our core values of PASSION , CARE , IMAGINATION , and TRUST define the way we carry out our work across all of our exhibitions and conferences.

If you share our values and want to be a part of a successful, dynamic, and creative global business then we want to hear from you.

The Opportunity:

We have an exciting new role for an Information Security Manager who will be responsible for implementing operational cyber security throughout a dynamic, global, commercial organisation. The role will involve collaboration with numerous internal departments and businesses across the Group organisation.

We are looking for a highly experienced Information Security Manager with extensive technical security knowledge and expertise.

Key Responsibilities:

• Lead a team monitoring and responding to cyber incidents.
• Being a subject matter expert on all aspects of operational information security and cyber risk.
• Define, develop, and implement operational information security processes.
• Identify, assess, and make recommendations on emerging security threats and vulnerabilities.
• Develop and oversee Security Operations Centre (SOC) activities, SIEM, IDS/IPS, threat and incident responses.
• Manage the cyber security vulnerability programme.
• Manage and oversee security penetration testing activities.
• Implement information security policies, processes, governance standards and frameworks.
• Advise departments on security requirements and controls, providing information security guidance across IT operations and new projects.
• Coordinate and manage information security activities, implementing solutions to improve information security, IT infrastructure and cyber security.
• Identify breaches in information security architecture, standards, and best practice.
• Manage and complete information security reviews, including due diligence of third parties.
• Monitor the development of relevant industry standards and best practices (NIST CSF, CIS, ISO etc.), assess and advise on compliance with these standards.

Requirements

Knowledge, Skills & Behaviours:

• Expertise and proficiency on information security management.
• A degree in cyber risk would be advantageous.
• Recognised security qualifications such as CISSP/CISM are desirable.
• Track record of achievement and delivery within various operational information security roles.
• Previous experience of SOC operations and management.
• Extensive knowledge of technical security issues and solutions.
• Extensive knowledge of cyber threats, penetration testing and vulnerability assessments.
• Experience of Cyber Essentials, ISO27001 compliance and leveraging NIST CSF and CIS benchmarks.
• Excellent communication skills both verbal and written, articulate, organised and diligent.
• Willing to join a shift-based call-out rota (this will incur an additional bonus payment).

About Clarion Events

Clarion Events is one of the world’s leading event organisers, producing and delivering innovative and market-leading events since 1947. ( )

Clarion Events embrace diversity and equal opportunities in all that we do. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be.

Clarion is private equity backed and owned by Blackstone. Blackstone is one of the world’s leading global investment funds, investing capital for the long term in order to build successful, resilient businesses. ( )

Our purpose is to deliver exceptional customer outcomes and experiences, by making every connection count.

Our vision is we want every one of our products to be a market leader in customer satisfaction and delight.

Benefits

• 25 days’ holiday plus bank holidays
• End of year wellbeing shutdown (closed for the last week of the year)
• Celebration day off (e.g. birthday, Diwali, Eid, etc)
• Summer Hours in August (3pm finish on Fridays)
• Helping Our World (HOW) Days – one paid day per quarter to carry out charity work
• Pension Scheme
• Private Medical Insurance
• Health Cash Plan
• Wellbeing Library (MYNDUP)
• Mentoring Programme
• Subsidised Café
• Season Ticket Loan
• Cycle to Work Schemes
• Free on-site gym and shower facilities
• Free eyesight tests
• Free flu vaccination – offered on site once a year for all employees

Information Security Operations Manager - Software Company
Remote-first with occasional travel to London (max once a week)
35-hour working week | 30 days annual leave + bank holidays

Are you an Information Security expert looking to make a real impact in a collaborative and forward-thinking tech environment?

A leading UK-based software company is going through an exciting digital transformation and is.

WHJS1_UKTJ

• Position: Information Security & Compliance Manager
• Location: Farnborough HQ
• Working Hours: Full-Time, 40 Hours per week

We are looking for a hands-on Information Security & Compliance Manager to take ownership of cyber security and data privacy across myairops. This role balances strategic oversight with practical, day-to-day security operations. Youll be central to maintaining our SOC 2 Type II a.

WHJS1_UKTJ

Job Overview

As the Security Compliance Manager, you will be responsible for the coordination, implementation, and continuous improvement of security activities across the UK & Ireland. You will ensure compliance with corporate, local, and legislative security requirements while actively supporting the development and effectiveness of our Security Management Systems.

Main duties

• Conduct site visits to all Gate Group rail and aviation sites providing expert security advice and solutions.
• Complete site Risk Assessments and surveys. Generate a risk report for further analysis and review.
• Advise with the writing and publishing of the security programme for all elements of the business.
• Advise with any new unit set ups.
• Provide threat assessments and advice as required.
• Manage the incident reporting systems ensuring that security breaches and potential security breaches are identified and investigated.
• Provide guidance with new business initiatives, providing future proofed solutions which are industry leading.
• Prepare an annual audit schedule and conduct security audits for all sectors of the business.
• Conduct Supplier Audits as per the legal or business requirements and communicate the results to all relevant stakeholders.
• Create a monthly security report and send out to all stakeholders

Qualifications

Education

• A Security specific professional course would be desirable (ASyl or CSMP)
• Strong communication skills (written and verbal)
• Good knowledge of EU and UK legislation for both aviation and rail relating to security
• Relevant training in security aspects

Work Experience

• Management experience preferably within aviation or rail security with knowledge of threat assessment, and crisis management planning
• Knowledge of the catering industry and preferably the airline/rail industries
• Knowledge of physical systems CCTV, Access control experience using x ray technology preferable.

About the Company:

Gate Gourmet is the world's largest independent provider of catering services for airlines and are the core business behind gategroup.

All applicants must have the right to work in the UK, undertake a CRC (Criminal Record Check) and provide 5 years of checkable referencing history. For anytime spent outside the UK exceeding 6 months, you must be able to provide a CRC (Criminal Record Check) for that country.