Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security governance, compliance, and risk management for a global retail organisation.
- Company: Join a dynamic global retail company based near Manchester, embracing innovation and security.
- Benefits: Enjoy a hybrid work model with flexible hours and opportunities for professional growth.
- Why this job: Make a real impact on global security practices while collaborating with diverse teams.
- Qualifications: 5+ years in cybersecurity or IT governance; knowledge of ISO 27001 and NIST required.
- Other info: This is a permanent role with a focus on hands-on security management.
The predicted salary is between 48000 - 72000 £ per year.
We are seeking a Senior Information Security Manager for a global retail organisation based near Manchester or East Midlands (hybrid position) on a permanent basis. This is a hands-on security management role responsible for overseeing governance, risk, compliance, and security operations across global regions. The role focuses on embedding robust security frameworks, maintaining compliance, and supporting effective operational security across the business.
Key Responsibilities
- Security Governance & Compliance
- Develop and implement information security policies, standards, and procedures across global operations.
- Ensure compliance with recognised frameworks such as ISO 27001, NIST, and others as required.
- Lead annual security audits and maintain continuous compliance across regional entities.
- Enterprise Risk Management & Supply Chain Security
- Maintain and improve the global information security risk management framework.
- Conduct regular security risk assessments and support mitigation planning.
- Manage supply chain security, including vendor risk assessments and responses to customer due diligence.
- Incident Response Policy & Preparedness
- Develop and maintain cybersecurity incident response policies and playbooks.
- Work with regional IT teams to ensure incident response processes are well understood and consistently applied.
- Promote awareness and preparedness through guidance and documentation.
- Security Operations & Third-Party Oversight
- Collaborate with the Security Operations Centre (SOC) to enhance operational security practices.
- Manage relationships with third-party security providers, ensuring coverage of regional threats and vulnerabilities.
- Oversee third-party risk management, including onboarding and ongoing assessments.
- Stakeholder Engagement & Support
- Build strong relationships with internal stakeholders across global IT and business functions.
- Align security practices with operational needs and provide support to regional teams as required.
Experience & Qualifications
- 5+ years of experience in cybersecurity, IT governance, or risk management roles.
- Solid understanding of compliance standards such as ISO 27001, NIST, and related frameworks.
- Proven experience in developing and maintaining security policies, audit readiness, and risk frameworks.
- Familiarity with global operational environments and cross-regional collaboration.
- Experience of managing within less regulated industries and small cyber functions.
- Strong communication and documentation skills to support policy rollout and stakeholder engagement.
Please contact me for details and a further discussion.
Contact Detail:
CODA Technology Services Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager (Perm - Hybrid) (Manchester)
✨Tip Number 1
Familiarise yourself with the specific compliance frameworks mentioned in the job description, such as ISO 27001 and NIST. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and readiness for the role.
✨Tip Number 2
Prepare examples of how you've successfully implemented security policies or managed risk assessments in previous roles. Real-life scenarios can showcase your hands-on experience and problem-solving skills, which are crucial for this position.
✨Tip Number 3
Research the company’s current security posture and any recent news related to their cybersecurity efforts. This knowledge will not only help you tailor your responses but also show your genuine interest in the organisation during discussions.
✨Tip Number 4
Network with professionals in the cybersecurity field, especially those who have experience in retail or global operations. Engaging with industry peers can provide insights and potentially valuable connections that may assist you in landing the job.
We think you need these skills to ace Information Security Manager (Perm - Hybrid) (Manchester)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity, IT governance, and risk management. Emphasise your familiarity with compliance standards like ISO 27001 and NIST, as well as any hands-on experience you have in developing security policies.
Craft a Compelling Cover Letter: In your cover letter, explain why you're the perfect fit for the Information Security Manager role. Discuss your experience with security governance, incident response, and stakeholder engagement, and how these align with the company's needs.
Showcase Your Achievements: When detailing your previous roles, focus on specific achievements that demonstrate your ability to manage security operations and compliance effectively. Use metrics where possible to quantify your impact, such as successful audits or risk assessments.
Proofread and Edit: Before submitting your application, thoroughly proofread your documents. Check for spelling and grammatical errors, and ensure that your writing is clear and professional. A polished application reflects your attention to detail, which is crucial in security management.
How to prepare for a job interview at CODA Technology Services
✨Know Your Frameworks
Make sure you have a solid understanding of compliance standards like ISO 27001 and NIST. Be prepared to discuss how you've implemented these frameworks in previous roles, as this will show your expertise and relevance to the position.
✨Demonstrate Incident Response Knowledge
Be ready to talk about your experience with incident response policies and procedures. Share specific examples of how you've developed or improved these processes, as well as how you've ensured that teams are prepared for potential security incidents.
✨Showcase Stakeholder Engagement Skills
Highlight your ability to build relationships with internal stakeholders. Discuss how you've aligned security practices with operational needs and provided support to various teams, as this is crucial for the role.
✨Prepare for Risk Management Discussions
Expect questions about your experience with risk assessments and mitigation planning. Be ready to explain how you've maintained and improved risk management frameworks, particularly in a global context, as this will be key to your success in the role.
