Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and enhance Sycurio's information security strategy and compliance efforts.
- Company: Sycurio is a dynamic fintech company focused on securing payment processes.
- Benefits: Enjoy flexible working options, competitive salary, and professional development opportunities.
- Why this job: Join a forward-thinking team tackling real-world security challenges in a fast-paced environment.
- Qualifications: Bachelor's degree in Cybersecurity or related field; 10+ years of experience required.
- Other info: Ideal for those passionate about cybersecurity and making a significant impact.
The predicted salary is between 72000 - 108000 £ per year.
The Information Security Director develops, shapes and maintains Sycurio’s information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader on all matters within the security and compliance domain such that the company remains secure against the ever-changing security threat and compliance landscape.
Information security strategy
- Create and maintain the Company’s strategy, ensuring alignment to the Company’s strategy and business goals.
- Work across internal and external stakeholders, communicating the information security strategy to relevant parties, providing assurance of policies, procedures, and systems.
- Develop, maintain, and expand the information security management system (‘ISMS’) in line with optimised compliance for ISO27001, PCI-DSS and SOC2 compliance.
- Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions.
- Responsible for the Company’s information security capability, ensuring it remains secure against an ever-changing threat landscape.
Operational input
- Contribute to design and architectural decisions and improve approach to the Company’s threat modelling.
- Lead on information security incidents and work directly with internal teams and external parties on containment and mitigation activities.
- Execute threat simulations.
- Assess emerging and potential security threats and act proactively to mitigate relevant threats.
- End-to-end vulnerability management.
- Manage security toolset.
- Act as the security “face” of Sycurio to its customers, suppliers and auditors, supporting both in-life and sales engagements.
- Manage and participate in the response to security questionnaires from customers and prospects.
Key qualifications, skills, experience:
- Qualifications: Bachelor's degree in Computer Science, Cybersecurity, or related field (Master's preferred). Industry certifications such as CISSP, CISM, CISA, or equivalent.
- Experience: 10+ years of information security experience. Financial/Fintech services/payments desirable. Deep knowledge of security frameworks (PCI, ISO 27001, NIST) and regulations (GDPR, CCPA). Experience with PCI DSS compliance and implementation. Proven success in managing external auditors to achieve positive outcomes. Expert in information security with strong communication and stakeholder management skills. Experience in managing security incidents and leading incident response. Experience with security assessment tools and vulnerability management. Strong vendor management and third-party risk assessment experience.
- Skills: Strong understanding of cloud security principles and best practices, particularly in AWS. Solid understanding of payment processing systems and associated security controls. Good communication and interpersonal skills, with the ability to effectively communicate security-related questions to technical and non-technical stakeholders (employees, customers, or partners). Project management skills, with the ability to manage projects such as processes implementation and improvement, security systems implementation. Ability to collaborate cross-functionally and influence stakeholders at all levels of the organisation. Good knowledge of Dev(Sec)Ops and how to implement secure software development practices.
Information Security Director - UK employer: Sycurio
Contact Detail:
Sycurio Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Director - UK
✨Tip Number 1
Network with professionals in the information security field, especially those who have experience with ISO27001, PCI-DSS, and SOC2 compliance. Attend industry conferences or webinars to connect with potential colleagues and learn about the latest trends and challenges in security.
✨Tip Number 2
Stay updated on the latest security threats and compliance regulations by following relevant blogs, podcasts, and news outlets. This knowledge will not only help you in interviews but also demonstrate your commitment to staying ahead in the ever-evolving security landscape.
✨Tip Number 3
Prepare to discuss specific examples of how you've successfully managed security incidents or led compliance initiatives in your previous roles. Highlighting your hands-on experience will show that you can effectively handle the responsibilities of the Information Security Director position.
✨Tip Number 4
Familiarise yourself with Sycurio’s products and services, as well as their current security posture. Understanding their business model and how security fits into it will allow you to tailor your discussions and demonstrate how you can add value to their team.
We think you need these skills to ace Information Security Director - UK
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security, particularly in compliance with ISO27001, PCI-DSS, and SOC2. Use specific examples to demonstrate your expertise and achievements in these areas.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for information security and your understanding of the company's needs. Mention how your background aligns with their goals and how you can contribute to their security strategy.
Highlight Relevant Certifications: Clearly list any industry certifications such as CISSP, CISM, or CISA in your application. These credentials are crucial for this role and should be prominently featured to catch the employer's attention.
Showcase Communication Skills: Since the role requires strong communication skills, provide examples in your application of how you've effectively communicated complex security concepts to both technical and non-technical stakeholders in previous roles.
How to prepare for a job interview at Sycurio
✨Showcase Your Expertise
As an Information Security Director, it's crucial to demonstrate your deep knowledge of security frameworks like ISO 27001 and PCI-DSS. Be prepared to discuss specific experiences where you've successfully implemented these standards and how they align with business goals.
✨Communicate Clearly
You'll need to communicate complex security concepts to both technical and non-technical stakeholders. Practice explaining your past projects and strategies in a way that is easy to understand, highlighting your strong communication skills.
✨Prepare for Scenario-Based Questions
Expect questions about how you would handle specific security incidents or compliance challenges. Think through potential scenarios and prepare your responses, focusing on your problem-solving skills and proactive approach to threat management.
✨Demonstrate Leadership and Collaboration
As a thought leader in security, you'll need to show your ability to lead teams and collaborate across departments. Share examples of how you've influenced stakeholders and driven security initiatives in previous roles.
