Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Coordinate security activities and manage compliance initiatives in a dynamic financial services environment.
- Company: Leading Financial Services institute based in London with a focus on security and compliance.
- Benefits: Competitive salary, hybrid work model, and opportunities for professional growth.
- Other info: Join a collaborative team and enhance your career in a rapidly evolving field.
- Why this job: Make a real impact on organisational security and compliance while working with cutting-edge technologies.
- Qualifications: 3-5 years in information security or compliance, with strong communication skills.
The predicted salary is between 55000 - 60000 £ per year.
My client, a Financial Services institute based in London, is looking to hire an Information Security & Compliance Officer to support and strengthen their security and compliance posture. No sponsorship can be offered for this role, and the successful candidate is expected to be in the office up to 3 days per week.
This role is responsible for coordinating security activities across the business, supporting compliance initiatives, managing third-party risk, and acting as the internal liaison with their outsourced SOC and Virtual CISO. The successful candidate will help implement security governance, risk management, and compliance frameworks while ensuring security best practices are embedded across the organisation. This role is ideal for someone with experience in security operations, governance, risk, and compliance (GRC) who enjoys working across teams to improve organisational security maturity.
Key Responsibilities- Security Operations Oversight
- Act as the primary internal liaison with the outsourced SOC provider
- Monitor and coordinate responses to alerts generated through Microsoft Sentinel and Microsoft Defender
- Support incident response coordination and internal communications
- Track remediation of security vulnerabilities and incidents
- Governance, Risk & Compliance
- Support the implementation and maintenance of security frameworks such as:
- ISO 27001
- Cyber Essentials Plus
- NIST / CIS frameworks
- Maintain and develop security policies, standards, and procedures
- Conduct risk assessments and track remediation actions
- Coordinate internal and external security audits
- Coordinate with other governance teams to ensure alignment around key initiatives
- Lead the rollout and ongoing management of a Third Party Risk Management programme
- Perform vendor security assessments and due diligence
- Maintain vendor risk registers and track remediation activities
- Work with procurement and legal teams to embed security requirements into supplier onboarding
- Support security awareness and training initiatives across the organisation
- Work with IT and engineering teams to ensure security best practices are followed
- Maintain risk registers and compliance documentation
- Provide reporting and metrics on security posture to leadership
- Support compliance initiatives and security improvement programmes
- Work with the virtual CISO to implement strategic security improvements
- Assist with policy development and control implementation
- Help coordinate vulnerability management and remediation programmes
- Provide input into client security questionnaires and audits where appropriate
- 3-5 years experience in information security, IT security, or compliance
- Understanding of security governance, risk, and compliance (GRC)
- Experience with Microsoft security tooling (Sentinel, Defender, or Microsoft Security stack)
- Familiarity with security frameworks (ISO 27001, NIST, CIS, Cyber Essentials)
- Experience working with third party vendors or supplier risk assessments
- Strong communication and stakeholder management skills
- Ability to translate security requirements into practical business processes
- Experience working with outsourced SOC providers
- Knowledge of Third Party Risk Management (TPRM) programmes
- Experience supporting ISO 27001 certification or audits
- Certifications such as:
- ISO 27001 Lead Implementer / Lead Auditor
- CISSP
- CISM
- Security+
- Strong organisational and documentation skills
- Ability to manage multiple compliance initiatives simultaneously
- Analytical thinking and risk assessment capability
- Collaborative approach to working across technical and non-technical teams
- Proactive mindset with a focus on continuous improvement
Within the first 12 months you will:
- Establish a structured Third Party Risk Management programme
- Improve visibility and reporting of security risks
- Strengthen security governance processes
- Develop an ISO 27001 implementation roadmap and compliance processes to ensure group compliance can evolve to a recognised standard within the next 12‑18 months.
- Improve collaboration between internal teams, the SOC provider, and the virtual CISO
Contract Type: Permanent
Specialism: Technology & Digital
Focus: Information Security
Industry: Banking
Salary: £55,000 - £60,000 per annum
Workplace Type: Hybrid
Experience Level: Mid Management
Location: London
Job Reference: BPFVDV-A
EEO Statement: Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates.
Information Security Officer in London employer: Cyber Security training courses
Contact Detail:
Cyber Security training courses Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Officer in London
✨Network Like a Pro
Get out there and connect with people in the industry! Attend events, join online forums, or even hit up LinkedIn. The more you engage with others, the better your chances of hearing about job openings before they’re even advertised.
✨Show Off Your Skills
When you get the chance to chat with potential employers, don’t hold back! Share specific examples of how you've tackled security challenges in the past. This will help them see you as the perfect fit for their team.
✨Tailor Your Approach
Every company is different, so make sure you tailor your conversations to match their needs. Research their security posture and mention how your experience aligns with their goals. This shows you’re genuinely interested and ready to contribute.
✨Apply Through Our Website
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who take that extra step to connect with us directly.
We think you need these skills to ace Information Security Officer in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Officer role. Highlight your experience in security operations, governance, risk, and compliance (GRC) to show us you’re the right fit for the job.
Craft a Compelling Cover Letter: Your cover letter should tell us why you’re passionate about information security and how your skills align with our needs. Use specific examples from your past experiences to demonstrate your expertise.
Showcase Your Technical Skills: Don’t forget to mention your familiarity with Microsoft security tools like Sentinel and Defender, as well as any relevant frameworks like ISO 27001 or Cyber Essentials. We want to see that you’ve got the technical chops!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates during the process.
How to prepare for a job interview at Cyber Security training courses
✨Know Your Security Frameworks
Make sure you’re well-versed in security frameworks like ISO 27001, NIST, and Cyber Essentials. Be ready to discuss how you've applied these in past roles, as this will show your practical understanding and ability to implement them effectively.
✨Showcase Your Communication Skills
As an Information Security Officer, you'll need to liaise with various teams. Prepare examples of how you've successfully communicated complex security concepts to non-technical stakeholders. This will demonstrate your ability to bridge the gap between technical and non-technical teams.
✨Prepare for Scenario-Based Questions
Expect questions that ask how you would handle specific security incidents or compliance challenges. Think through potential scenarios related to third-party risk management or incident response, and be ready to outline your approach and thought process.
✨Highlight Your Collaborative Experience
This role requires working closely with outsourced SOC providers and internal teams. Share examples of successful collaborations from your previous roles, focusing on how you’ve improved security processes or compliance initiatives through teamwork.