Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and enhance security operations while ensuring compliance and technical oversight.
- Company: Dynamic tech organisation with a focus on information security.
- Benefits: Bonus, health cover, pension, and flexible hybrid working.
- Why this job: Shape the future of security in a fast-paced, innovative environment.
- Qualifications: Strong GRC knowledge and technical skills in a cloud-heavy setting.
- Other info: Join a supportive team with opportunities for professional growth.
The predicted salary is between 48000 - 72000 £ per year.
Job Description
Information Security Manager (3 days/week, permanent pro-rata)
Location: Leeds-hybrid (on-site 1-2 day/week, typically Mon/Tue)
Reports to: VP, Information Security
Team: 5 in security (within a wider UK tech org of ~25, multi-region)
We’re looking for a hands-on InfoSec Manager to take pressure off the VP, shape the control environment, and keep the security operations and compliance moving at speed. You’ll blend GRC and technical oversight, working closely with two security engineers (vuln scanning/IDS, external pen-test liaison) and two GRC specialists.
What you’ll do
- Drive and extend ISO 27001 implementation/maintenance (UK certified; expanding to Madrid and Manila).
- Support SOC 2 Type 2 maintenance (already accredited)—expert level not required.
- Oversee SIEM operations with the tech team: ensure log ingestion/coverage, daily monitoring, and follow-up.
- Guide vulnerability management, alert triage (Alert Logic), and external pen-test cycles.
- Keep evidence flows tight: client questionnaires, audit responses, security awareness, and user access reviews.
About you
- Strong GRC grounding plus solid technical understanding (AWS-heavy environment).
- Comfortable being hands-on where needed; people management nice-to-have, not essential.
- ISO 27001 (implementation/assurance) experience; SOC 2 exposure helpful.
- SIEM familiarity and the ability to work with engineers on coverage, tuning, and use-cases.
- Stakeholder-savvy; calm under pressure; excellent written/verbal comms.
Benefits (pro-rata)
- Bonus / Health cover / Pension
- Hours: 9–5; hybrid with 1-2 day/week in Leeds
Information Security Manager employer: 4square Recruitment Ltd
Contact Detail:
4square Recruitment Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager
✨Tip Number 1
Network like a pro! Reach out to folks in the InfoSec community on LinkedIn or at local meetups. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Prepare a portfolio or case studies that highlight your experience with ISO 27001 and SOC 2. This will help you stand out during interviews and demonstrate your hands-on approach.
✨Tip Number 3
Practice makes perfect! Conduct mock interviews with friends or use online platforms to refine your responses, especially around GRC and technical topics. Being calm under pressure is key, so get comfortable with those tough questions.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Information Security Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the job description. Highlight your experience with ISO 27001 and any GRC knowledge you have. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for the Information Security Manager role. Share specific examples of your hands-on experience and how you've tackled similar challenges in the past.
Showcase Your Technical Skills: Don’t forget to mention your familiarity with SIEM operations and AWS environments. We’re keen on seeing how you can blend technical oversight with GRC, so make those skills pop in your application!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications better and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at 4square Recruitment Ltd
✨Know Your ISO 27001 Inside Out
Make sure you brush up on your ISO 27001 knowledge before the interview. Be ready to discuss your experience with its implementation and maintenance, as this is a key part of the role. Think of specific examples where you've driven or contributed to ISO projects.
✨Show Off Your Technical Savvy
Since the job involves working in an AWS-heavy environment, be prepared to talk about your technical skills. Familiarise yourself with SIEM operations and vulnerability management tools. If you have hands-on experience, share those stories to demonstrate your capability.
✨Communicate Clearly and Confidently
This role requires excellent written and verbal communication skills. Practice articulating your thoughts clearly, especially when discussing complex security concepts. You might even want to prepare a few scenarios where you've successfully communicated with stakeholders under pressure.
✨Prepare for Scenario-Based Questions
Expect questions that assess how you would handle real-world security challenges. Think through potential scenarios related to GRC and technical oversight, and be ready to explain your thought process and decision-making. This will show your problem-solving skills and readiness for the role.