Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and evolve our information security programme to protect data and systems.
- Company: Join one of the largest water retailers in the UK with a focus on innovation.
- Benefits: Competitive salary, bonus potential, 31 days annual leave, and career growth opportunities.
- Why this job: Make a meaningful impact by safeguarding against cyber threats in a dynamic environment.
- Qualifications: Experience in information security and strong understanding of industry frameworks required.
- Other info: Collaborative culture with opportunities for hands-on involvement and strategic thinking.
The predicted salary is between 43200 - 78000 ÂŁ per year.
We’re looking for an experienced and forward‑thinking Information Security Manager to lead and evolve our company’s information security programme. In this pivotal role, you will be responsible for safeguarding our data, systems and services from ever‑changing cyber threats, ensuring they remain secure, compliant and resilient.
You’ll shape and implement our information security strategy, set governance standards, and drive secure‑by‑design principles across the business. Working closely with colleagues across IT, Change, HR, Procurement, Compliance and more, you’ll balance security, risk, usability and cost to support Business Stream’s strategic goals.
From managing system vulnerabilities, incident response and risk assessments, to leading supplier security oversight and championing a strong culture of cyber awareness, you will be our subject‑matter expert and primary point of contact for all cybersecurity matters. This role also includes responsibility for operational partnerships, such as managed SOC, SIEM and threat‑management services, and ensuring we continue to mature our security posture in line with recognised frameworks like ISO 27001, NIST and CIS Controls.
If you’re a strategic thinker with willingness and ability to get hands‑on, this role offers the opportunity to make a meaningful impact across the organisation.
What makes you just right for us?
Essential skills, knowledge & experience
- Experience in information security, including leading or owning an information security programme, domain or team.
- Strong understanding of industry frameworks and standards such as ISO 27001/2, CIS Controls, NIST CSF/800‑53, and established risk methodologies.
- Hands‑on experience across cloud and modern IT security, particularly Microsoft Azure, M365, Entra, Sentinel, Purview, endpoint security and vulnerability management.
- Proven capability in incident response, from detection through to lessons learned.
- Excellent ability to translate technical risk into clear business impact, coupled with confident stakeholder engagement and executive‑level reporting skills.
- Experience embedding security into change, conducting threat modelling, and steering secure design reviews.
- Solid understanding of regulatory requirements, including GDPR and other relevant industry regulations.
- Strong written and verbal communication skills, demonstrating clarity, influence and collaboration.
- Professional certifications such as CISSP, CISM, CCSP, ISO 27001 Lead Implementer/Auditor, CEH or GIAC.
- Experience managing security certifications, third‑party risk programmes and assurance activities.
- Exposure to SIEM engineering, SOAR, IaC security (Terraform/Bicep), scripting for automation, and security tooling optimisation.
- Knowledge of the water industry or its regulatory landscape.
- Previous management experience - leading a team and/or managing vendors.
What’s in it for you?
You’ll be a key team player in one of the largest water retailers in the UK, with lots of benefits and the chance to grow your career.
- Salary up to ÂŁ65,000 DOE plus bonus up to 20%
- 31 days annual leave and six
Information Security Manager in Edinburgh employer: Business Stream
Contact Detail:
Business Stream Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager in Edinburgh
✨Network Like a Pro
Get out there and connect with people in the industry! Attend events, webinars, or even local meetups. The more you engage with others, the better your chances of hearing about job openings that might not even be advertised.
✨Show Off Your Skills
Don’t just talk about your experience; demonstrate it! Create a portfolio or a personal project that showcases your information security skills. This can really set you apart from other candidates when you’re in interviews.
✨Ace the Interview
Prepare for common interview questions but also think about how you can relate your answers to the specific needs of the company. Show them you understand their challenges and how you can help tackle them head-on.
✨Apply Through Our Website
Make sure to apply directly through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take that extra step to connect with us directly.
We think you need these skills to ace Information Security Manager in Edinburgh
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Manager role. Highlight your experience with information security programmes and relevant frameworks like ISO 27001 and NIST. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how you can contribute to our mission at StudySmarter. Be sure to mention any hands-on experience you have with cloud security and incident response.
Showcase Your Communication Skills: Since this role involves engaging with various stakeholders, make sure to demonstrate your strong written communication skills. Use clear and concise language in your application to show us you can translate technical jargon into business impact.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you don’t miss out on any important updates. Plus, it shows you're keen on joining our team!
How to prepare for a job interview at Business Stream
✨Know Your Frameworks
Make sure you brush up on your knowledge of industry frameworks like ISO 27001, NIST, and CIS Controls. Be ready to discuss how you've applied these in previous roles, as this will show your depth of understanding and practical experience.
✨Showcase Your Hands-On Experience
Prepare to share specific examples of your hands-on experience with cloud security, particularly with Microsoft Azure and M365. Highlight any incidents you've managed and the lessons learned, as this demonstrates your ability to handle real-world challenges.
✨Communicate Clearly
Practice translating technical jargon into business impact. You’ll need to engage with stakeholders at all levels, so being able to communicate complex ideas simply and effectively is key. Think about how you can illustrate your points with clear examples.
✨Demonstrate Leadership Skills
Be ready to discuss your previous management experience, whether leading a team or managing vendors. Share how you've fostered a culture of cyber awareness and collaboration, as this aligns with the role's emphasis on teamwork across departments.
