Cyber Security Continuous Improvement Manager in Guildford

As part of an exciting digital transformation, the University of Surrey is seeking a Cyber Security Continuous Improvement Manager. In this senior role, you will shape and strengthen the University's cyber resilience, ensuring our security capabilities, controls and behaviours continuously evolve in response to an ever‑changing threat landscape. We value, empower and support every member of staff to get the best out of your unique talents, so you'll be rewarded with a generous salary, 32 days holiday plus Bank Holidays, pension contribution of 14.5%, and a unique and vibrant working environment.

Role & Responsibilities

• You will play a central role in how the University identifies, manages and adapts to cyber risk using data, intelligence and sector best practice to guide decision‑making.
• The post leads our shift from reactive to proactive security, driving behavioural and cultural change across the institution and embedding clear accountability for cyber risk.
• Beyond formal project delivery, you will oversee continuous improvement activity—translating operational insight from metrics, audits, incidents and risk assessments into practical, business‑as‑usual enhancements.
• This work ensures faster detection and response, greater organisational readiness, and more resilient incident management processes.
• Lead continuous improvement – develop and implement a structured, continuous improvement roadmap to enhance the University's cybersecurity maturity over time.
• Drive risk reduction initiatives – oversee the identification, tracking and mitigation of cyber risks, ensuring continuous reduction of vulnerabilities across systems and processes enabling and influencing executive risk decision making.
• Lead on internal exercises and post‑incident reviews – lead lessons learned activities, ensuring root causes are addressed and translated into practical, proportionate improvements; accountability for ensuring organisational learning is embedded.
• Establish metrics and reporting – define and manage key performance indicators and key risk indicators to measure the effectiveness of controls and improvement efforts and allow informed and timely decision‑making at senior levels.
• Support during cyber security incidents – assist the Director of Cyber Security and the Head of Cyber Security Operations by facilitating structured engagement between Cyber Operations, Cyber Risk & Compliance, IT Services, Communications and other University senior stakeholders, ensuring clarity of roles, actions and timelines.

The IT team at Surrey is plugged into the whole University, and our digital transformation work underpins the University's strategy. IT is growing our digital transformation capability, improving student experience, and helping increase our research impact. It's a vibrant and exciting time to join a great and well‑respected team at the heart of the University's strategic plans.

What's in it for you?

• We think Surrey is an amazing place to work, and we are carefully crafting a dynamic, flexible and fun place to work and thrive.
• Alongside our gorgeous campus setting, on‑site atmosphere and plentiful development opportunities, we also offer:
• Competitive Salary
• Market‑leading Pension
• Up to 40 days holiday: 25 days annual leave + 7 University days + Bank Holidays
• Travel & family benefits including subsidised rail fare, cycle‑to‑work scheme and on‑site childcare
• Access to on‑site leisure facilities at discounted rates

For more information or to be considered for the role, please apply via the University of Surrey Website. The University is committed to providing an inclusive environment that offers equal opportunities for all. We place great value on diversity and are seeking to increase the diversity within our community. Therefore, we particularly encourage applications from under‑represented groups, such as people from Black, Asian and minority ethnic groups and people with disabilities.