Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the charge in managing cyber security and information security for a growing engineering firm.
- Company: Join a well-established construction engineering business with ambitious growth plans and multiple acquisitions ahead.
- Benefits: Enjoy a competitive salary, potential remote work options, and a dynamic team environment.
- Why this job: Be part of a critical expansion phase, driving ISO 27001 readiness and fostering a culture of security awareness.
- Qualifications: Experience with ISO 27001 and a strong background in cyber security management are essential.
- Other info: Work in Central London, starting with 4 days onsite, reducing to 3 after probation.
Information Security Manager
Read all the information about this opportunity carefully, then use the application button below to send your CV and application.
£70,000- £75,000 PA
Central London
Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You\’ll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming years.
The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You\’ll liaise with assessors and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you\’ll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements.
Responsibilities:
Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the business
Liaise with external ISO27001 assessors and internal teams to ensure smooth assessments
Actively contribute to ISO processes, strategies and problem-solving
Use prior ISO experience to support certification readiness
Working closely with stakeholders across the business in relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap
Handle varied and complex security challenges, from system reviews to high-level risk assessments
Work closely with third-party suppliers in relation to audits, forensic analysis and pen testing
Requirements:
Experience with ISO 27001 is essential
Strong background in cyber security management
Proven experience in identifying and mitigating security risks#
Ability to make actionable recommendations for security improvements
Experience with GDPR and data protection, together with knowledge of IS standards
Security assessment frameworks (threat modelling, controls assessment, risk assessment)
Relevant qualifications; CISSP, CISM or similar would be beneficial.
Based in Central London, 4 days per week onsite initially dropping to 3 once passed probation
Information Security Manager employer: Context Recruitment
Contact Detail:
Context Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager
✨Tip Number 1
Network with professionals in the information security field, especially those who have experience with ISO 27001. Attend industry events or webinars to connect with potential colleagues and learn about their experiences.
✨Tip Number 2
Familiarise yourself with the specific challenges faced by construction engineering businesses regarding information security. Tailor your discussions to demonstrate how your skills can address these unique challenges.
✨Tip Number 3
Prepare to discuss your previous experiences with ISO 27001 and how you successfully managed certification processes. Be ready to share specific examples of how you drove security improvements in past roles.
✨Tip Number 4
Research the company’s recent acquisitions and growth plans. Understanding their strategic direction will help you align your skills and experiences with their goals during discussions.
We think you need these skills to ace Information Security Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with ISO 27001 and cyber security management. Use specific examples that demonstrate your ability to identify and mitigate security risks, as well as any relevant qualifications like CISSP or CISM.
Craft a Strong Cover Letter: In your cover letter, express your enthusiasm for the role and the company. Discuss how your background aligns with their needs, particularly in relation to driving ISO-related strategies and managing security policies.
Showcase Relevant Experience: When detailing your work history, focus on your achievements in previous roles related to information security. Highlight any successful projects involving risk assessments, security improvements, or collaboration with external assessors.
Proofread Your Application: Before submitting, carefully proofread your CV and cover letter for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial in the field of information security.
How to prepare for a job interview at Context Recruitment
✨Showcase Your ISO 27001 Knowledge
Make sure to highlight your experience with ISO 27001 during the interview. Be prepared to discuss specific strategies you've implemented in the past and how they contributed to certification readiness.
✨Demonstrate Cyber Security Awareness
Since the role emphasises a culture of cyber security awareness, share examples of how you've fostered this in previous positions. Discuss any training programmes or initiatives you've led to enhance security practices within a team.
✨Prepare for Technical Questions
Expect technical questions related to cyber security management and risk assessments. Brush up on relevant frameworks and be ready to explain how you've applied them in real-world scenarios.
✨Engage with Stakeholders
The role involves liaising with various stakeholders, so be prepared to discuss your communication style. Share examples of how you've successfully collaborated with different teams to achieve information security goals.
