At a Glance
- Tasks: Lead security initiatives and ensure compliance with industry standards while managing risk assessments.
- Company: Join AppyWay, a pioneering SaaS company transforming urban mobility and sustainability.
- Benefits: Competitive salary, flexible working, generous holiday, and share options for all employees.
- Other info: Dynamic work environment with opportunities for personal and professional growth.
- Why this job: Make a real impact in decarbonising cities and enhancing digital infrastructure.
- Qualifications: 5+ years in IT security, with certifications like CISSP or CISM preferred.
The predicted salary is between 60000 - 68000 £ per year.
Description
Appy Way is the industry-leading Saa S solution decarbonising cities by empowering local authorities to digitally manage their kerbside and share kerbside data with fleets and drivers
Our journey began with Appy Parking, an app born from the frustration of finding and understanding parking on the streets of London.
During the app’s creation, it was clear that cities lacked shareable, machine-readable, standardised parking restriction data.
So we went ahead and built the UK’s largest set of standardised kerbside data, in turn discovering the untapped potential beneath everyone’s feet.
Today, we’re Europe’s leading intelligent kerbside platform, helping cities and drivers optimise operations and transition to net zero by uniting parking/loading maps, occupancy data, and cashless payments.
Our impressive client roster includes local authorities such as Edinburgh, Southwark, Lambeth, Haringey, Harrogate, Cambridgeshire, Cornwall, Dorset, Dublin and more recently across the pond, NYC.
Additionally, our apps and API are trusted by tens of thousands of drivers and fleets including Blue Badge innovators Motability Operations.
We are proud to have the support of top investors, including, Hyundai Motor Company, Aviva Ventures, Mastercard and ESRI mapping.
To date, we have raised over £20 million in funding, allowing us to continue building something big from the ground up.
If you’re passionate about tangible solutions to help decarbonise the world then Appy Way is the perfect place for you. Come and make your mark on a company you can call your own!
Requirements
- What you will be doing
- In this role you will lead the implementation, development, and execution of a large range of security related activities, such as creation / compliance with policies and standards, monitoring, risk and threat assessments, as well as business continuity and disaster recovery, it will report to the Director of People & Operation
- You be be responsible for managing and where required, implementing;
- PCI DSS
- Cyber Essentials and Cyber Essentials +
- Security Requirements in relation to our expansion into the U. S. e. g
- SOC 2 Type II
- General Security Infrastructure throughout the business
- Asset and Software Management
- You will chair the Information Security Forum to ensure that Security initiatives are progressed within the business.
- You will ensure that the ELT are briefed and kept informed of Security risks and produce and track the Security KPI’s.
- You will lead the Security Awareness program within the business ensuring that new and existing employees have a good understanding of Information Security including but not limited to running phishing simulations.
- You will support the business with AI adoption and ensure that Security and data governance guardrails are in place.
- You will support the DPO with data protection to ensure initiatives are progressed.
- You will lead the end to end implementation of Cyber Essentials + with a target of Q1 2027 for this certification.
- Where required support the business with IT troubleshooting through the internal ticketing system.
- Someone with a secure-by-design, shift-left approach to Security Architecture and Assurance. You'll need to be incredibly well-versed in processes and methodologies tied to this
- Proficiency within the Software Security, Application Security and Dev Sec Ops ecosystem
- Strong experience with modern cloud environments, preferably Azure
Essential
- Over 5 years of experience in a similar position, with familiarity in ISO 27001 standards
- You will have a relevant security certifications/qualification such as CISSP or CISM.
- Strong background in Information Security with proven experience of dealing with senior and executive management stakeholders
- Extensive understanding of security policies and frameworks, including Cyber Essentials, ISO 27001, SOC 2 and regulatory requirements e. g DPA/GDPR.
- Experience with the Microsoft stack including Entra ID, Defender, Intune, and container apps
- Experience with AI tools in particular Claude Cowork and Claude Code.
- Skilled in researching and assessing emerging cybersecurity threats and implementing strategies to mitigate them
- Experience having input into disaster recovery plans as well as the creation of contingency plans in the event of a security breach
- Up-to-date knowledge of the latest trends and advancements in security and technology
- Preferred
- Ability to cross train and pick up different technologies as required
- Proven experience supporting a business in its expansion into the U. S. market, including knowledge of U. S. security standards such as SOC 2 would be beneficial
- Software development environment experience would be beneficial
- Experience in a fast-growing scale-up environment, with a keen eye for identifying opportunities to streamline processes and taking proactive action
Benefits
- 💷 Enjoy a competitive salary of £60,000-£68,000 depending on your profile and experience
- 🌴 25 days’ holiday plus all UK bank holidays and accrue additional holiday for each year you work with us up to 30 days total - it’s our way of saying thank you! 🙂
- 🏠 A hybrid flexible working model: Thursdays in our Covent Garden based office, and the option to work from home the rest of the week (if you that works for you), so that you don’t have to sacrifice your personal commitments
- ✈️ Want to stay a little longer at your dream destination? Have greater flexibility to ‘Work from Anywhere’ for up to a week at time
- 🤲 Experience true ownership! Everyone at Appy Way owns a piece of the pie through our share option scheme, so when Appy Way does well, so do you!
- 💰 Save and plan for the future with our enhanced company pension scheme provided by Royal London. The more you contribute, the more we’ll contribute too!
- 📈 We’ll work to protect your compensation from a rapidly changing economy by carrying out an annual Cost of Living exercise to ensure your salary stays ahead of rising prices and interest rates
- 🪦Whilst we hope you never have to use it, we offer our entire team Death in Service insurance cover
- 🧘Your wellbeing matters to us, gain access to GP consultations, nutritionists, dental advice and counselling on demand
- 🎉 Access hundreds of perks, discounts, weekly freebies, cashback offers and discounted gym memberships to help with the cost of living changes via Perk Box
- ☕ Working on site? Enjoy a freshly made coffee from our onsite barista and a cold beverage at our bar at the end of the day!
- 💻 Everyone at Appy Way has their optimum setup, we’ll let you choose your own laptop, (PC or Mac) and accessories so you can work in comfort!
- 🚀 Everyone at Appy Way has a clear growth framework and we’ll support you with the appropriate learning and development plan to achieve your goals
• 🍼 Planning for or raising a family?
You can expect to benefit from our inclusive leave options, nursing rooms and a dedicated plan to ensure you are fully supported on your return.
- You can also benefit from savings on nursery fees through our Workplace Nursery scheme
- 🎾 We may work flexibly but we’re still a social bunch! Join one of our regular social events, group trips and activities throughout the year
⚠️ A polite note to recruitment agencies: Our internal team handles 100% of our Talent Acquisition initiatives in-house.
We appreciate your interest, but external recruiters and agencies should not get in touch regarding this vacancy.
Thank you!
IT Security & Infrastructure Manager in London employer: AppyWay
At AppyWay, we pride ourselves on being an exceptional employer that champions innovation and sustainability in the heart of Covent Garden. Our hybrid working model, competitive salary, and generous holiday allowance reflect our commitment to work-life balance, while our share option scheme ensures that every employee has a stake in our success. With a strong focus on personal growth and well-being, we offer tailored development plans and access to various health resources, making AppyWay a truly rewarding place to build your career.
StudySmarter Expert Advice🤫
We think this is how you could land IT Security & Infrastructure Manager in London
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including AppyWay, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through AppyWay
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at AppyWay. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace IT Security & Infrastructure Manager in London
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at AppyWay insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to AppyWay that you’re committed to staying ahead in the game.
How to prepare for a job interview at AppyWay
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at AppyWay to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at AppyWay.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.