Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the charge in safeguarding data and ensuring compliance across a growing tech landscape.
- Company: Established construction engineering firm with ambitious growth plans.
- Benefits: Competitive salary, career development opportunities, and a dynamic work environment.
- Other info: Central London location with flexible onsite requirements after probation.
- Why this job: Join at a pivotal moment and make a real impact on data security and governance.
- Qualifications: Experience with ISO 27001 and a strong background in cyber security and data governance.
The predicted salary is between 60000 - 84000 £ per year.
A well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You’ll be joining at a critical time as the organisation expands its technical capability, with ambitious growth plans and multiple acquisitions planned over the coming years.
The Information Security Manager will play a pivotal role in both the technical cyber security environment and the wider information security and data governance framework for the business. This includes ownership of the entire data lifecycle, from ingestion to delivery, ensuring accuracy, security, compliance and enabling confident, data-driven decision-making.
This role is responsible for ensuring robust cyber security controls, with a strong emphasis on ISO 27001 readiness and accreditation. You will liaise with assessors and internal teams, drive ISO-related strategies and ensure certification plans stay on track. In addition, you will develop and implement the company’s data governance strategy, ensure GDPR compliance and define policies and procedures for data quality, access and usage.
Responsibilities:
- Oversee the development and maintenance of the Information Security Management System (ISMS)
- Own and maintain all security-related and data governance policies, implementing Security by Design
- Oversee the full data lifecycle, ensuring integrity, quality and compliance from source to end client
- Ensure compliance with GDPR, NIS2 and other data protection regulations
- Define and enforce scalable and secure data and analytics architecture
- Collaborate across IT, Operations, Marketing and Compliance to integrate and secure data sources
- Conduct risk assessments, threat modelling and recommend actionable improvements
- Work with data custodians to ensure information assets are stored correctly and in compliance with standards
- Process Data Subject Access Requests (DSARs) and supplier assurance questionnaires (SAQs/PQQs)
- Manage relationships with third-party suppliers for audits, forensic analysis, penetration testing and compliance checks
- Deliver data security and cyber awareness training across the business
Requirements:
- Experience with ISO 27001 (implementation, maintenance and accreditation) is essential
- Strong technical background in cyber security, data governance and related technologies
- Proven track record in designing and implementing governance frameworks and policies
- Experience with GDPR compliance, data protection and regulatory standards
- Knowledge of Microsoft Purview, VARONIS (or similar tools), advanced Excel, Power BI and master data management
- Familiarity with security assessment frameworks (threat modelling, controls assessment, risk assessment)
- Relevant qualifications such as CISSP, CISM, CDMP, CDGP, or CIPP/E are highly advantageous
Based in Central London, with 4 days per week onsite initially, dropping to 3 once probation is passed.
Information Technology Security Officer employer: Context Recruitment
Contact Detail:
Context Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Technology Security Officer
✨Tip Number 1
Network like a pro! Get out there and connect with people in the industry. Attend events, join online forums, or even hit up LinkedIn. The more people you know, the better your chances of landing that Information Security Manager role.
✨Tip Number 2
Show off your skills! Prepare a portfolio or case studies that highlight your experience with ISO 27001 and data governance. When you get the chance to chat with potential employers, let them see what you can bring to the table.
✨Tip Number 3
Practice makes perfect! Get ready for those interviews by doing mock sessions with friends or mentors. Focus on common questions related to cyber security and GDPR compliance, so you can confidently showcase your expertise.
✨Tip Number 4
Apply through our website! We’ve got loads of opportunities waiting for you. By applying directly, you’ll be one step closer to joining a company that values your skills in information security and data governance.
We think you need these skills to ace Information Technology Security Officer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the job description. Highlight your experience with ISO 27001 and any relevant technical skills. We want to see how your background aligns with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for the Information Security Manager role. Share specific examples of your achievements in cyber security and data governance.
Showcase Your Technical Skills: Don’t hold back on your technical expertise! Mention your familiarity with tools like Microsoft Purview and VARONIS, as well as your experience with GDPR compliance. We love seeing candidates who are technically savvy.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Context Recruitment
✨Know Your ISO 27001 Inside Out
Since the role heavily focuses on ISO 27001, make sure you’re well-versed in its principles and requirements. Prepare to discuss your previous experiences with ISO implementation and how you’ve ensured compliance in past roles.
✨Showcase Your Technical Skills
This position requires a strong technical background in cyber security and data governance. Be ready to talk about specific tools you've used, like Microsoft Purview or VARONIS, and how they contributed to your success in managing data security.
✨Demonstrate Your Collaborative Spirit
The job involves working across various departments. Think of examples where you successfully collaborated with IT, Operations, or Compliance teams. Highlight how you integrated security measures while maintaining operational efficiency.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Practice articulating how you would handle risk assessments or GDPR compliance challenges, showcasing your analytical thinking and decision-making process.