Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead information security governance and ensure compliance across the organisation.
- Company: Join a forward-thinking company prioritising security and innovation.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Why this job: Make a real impact on security practices while collaborating with diverse teams.
- Qualifications: 7+ years in information security leadership and hands-on ISO 27001 experience.
- Other info: Dynamic role with a focus on continuous improvement and resilience.
The predicted salary is between 48000 - 72000 ÂŁ per year.
My client is recruiting an Information Security Lead to take full ownership of information security governance, risk management, and audit readiness across the organisation. This role is responsible for ensuring the business remains continuously compliant while enabling teams to operate quickly and securely in a regulated environment.
The successful candidate will lead the information security function, working closely with technical and operational teams to embed pragmatic, delivery‑focused security practices that support business outcomes.
Key Responsibilities- Own information security governance and the ISMS end‑to‑end, including risk registers, policies, internal audits, management reviews, and external audits.
- Lead compliance against recognised security standards (including ISO 27001) and extend governance into additional frameworks where required.
- Establish and maintain a robust, audit‑ready evidence pipeline with clearly defined ownership.
- Maintain a live, decision‑focused risk register with mitigation plans and accountable owners.
- Operate pragmatic policy lifecycle and exception management processes.
- Define evidence and assurance expectations for technical security controls.
- Validate control effectiveness and ensure ongoing audit readiness.
- Support vendor and customer security due diligence activities.
- Observe incident response exercises and ensure corrective actions are tracked and closed.
- Design and deliver organisation‑wide security awareness and training programmes.
- Maintain clear, accessible security guidance and best practices for all teams.
- Lead and develop the information security function, partnering across engineering, IT, operations, and governance teams.
- Contribute to resilience, reliability, and continuous improvement initiatives from a risk and governance perspective.
- 7+ years’ experience in information security or ISMS leadership roles.
- Hands‑on experience owning ISO 27001 end‑to‑end, including audits and management reviews.
- Strong experience managing evidence, documentation, and compliance artefacts.
- Proven ability to translate technical security controls into compliance‑ready evidence.
- Track record of influencing stakeholders through collaboration rather than enforcement.
- Experience with additional frameworks such as SOC 2, ISO 27701, or CIS.
- Professional security certifications (e.g. CISSP, CISM, ISO Lead Auditor/Implementer).
- Experience working closely with security engineering or platform teams.
- Background in fast‑moving or growth‑oriented environments.
Information Security Lead in Sheffield employer: GCS
Contact Detail:
GCS Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Lead in Sheffield
✨Tip Number 1
Network like a pro! Reach out to folks in the information security field on LinkedIn or at industry events. We all know that sometimes it’s not just what you know, but who you know that can help you land that dream job.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of ISO 27001 and other relevant frameworks. We suggest creating a cheat sheet of key points and examples from your experience that showcase your skills in governance and risk management.
✨Tip Number 3
Showcase your leadership skills! Be ready to discuss how you've led teams and influenced stakeholders in past roles. We want to hear about your collaborative approach and how you’ve driven security practices that align with business goals.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive and engaged in their job search.
We think you need these skills to ace Information Security Lead in Sheffield
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the role of Information Security Lead. Highlight your experience with ISO 27001 and any relevant frameworks, as well as your hands-on leadership in information security. We want to see how your background aligns with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how you can help us maintain compliance while enabling quick operations. Be sure to mention specific examples from your past roles that demonstrate your skills.
Showcase Your Collaboration Skills: Since this role involves working closely with various teams, make sure to highlight your ability to influence stakeholders through collaboration. Share examples of how you've successfully partnered with technical and operational teams in the past to achieve security goals.
Apply Through Our Website: We encourage you to apply directly through our website for the best chance of getting noticed. It’s the easiest way for us to keep track of your application and ensure it reaches the right people. Don’t miss out on this opportunity!
How to prepare for a job interview at GCS
✨Know Your Stuff
Make sure you’re well-versed in information security governance and risk management. Brush up on ISO 27001 and any other frameworks mentioned in the job description. Being able to discuss your hands-on experience with audits and compliance artefacts will show that you’re not just familiar with the theory but have practical knowledge too.
✨Showcase Your Leadership Skills
As an Information Security Lead, you’ll need to demonstrate your ability to lead teams and influence stakeholders. Prepare examples of how you’ve successfully collaborated with technical and operational teams in the past. Highlight instances where you’ve embedded security practices that supported business outcomes.
✨Be Ready for Scenario Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think about how you would handle incidents or manage a risk register. Practising these scenarios can help you articulate your thought process clearly during the interview.
✨Prepare Questions for Them
Interviews are a two-way street! Prepare insightful questions about their current security posture, team dynamics, and how they measure success in this role. This shows your genuine interest in the position and helps you gauge if the company is the right fit for you.
