Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber security and privacy initiatives across multiple platforms and ensure compliance.
- Company: Join a forward-thinking organisation dedicated to safeguarding children and promoting inclusivity.
- Benefits: Competitive salary, professional development, and a supportive work environment.
- Why this job: Make a real difference in the safety and privacy of data for learners worldwide.
- Qualifications: 8-10 years in cyber security or privacy operations with strong risk management skills.
- Other info: Dynamic role with opportunities for growth and impact in a diverse team.
The predicted salary is between 43200 - 72000 Β£ per year.
The ISP Cyber Security & Privacy Manager will own and operate ISPβs technology security and data privacy control framework across TDDA platforms, integrations, and data products. This role operationalises security-by-design and privacy-by-design across delivery, ensuring ISP operates with IPO-grade controls, audit-ready evidence, and consistent gating of change. The role is not advisory only β it has active decision rights to define controls and block non-compliant delivery.
Scope & Complexity
- Enterprise-wide, multi-country environment
- Operates across ERP, HRIS, SIS, CRM, EdTech, Data Platform, Integrations and AI products
- Works with outsourced cyber partners but retains ISP accountability
ISP Principles
- Begin with our children and students. Our children and students are at the heart of what we do. Simply, their success is our success. Wellbeing and safety are both essential for learners and learning.
- Treat everyone with care and respect. We look after one another, embrace similarities and differences and promote the well-being of self and others.
- Operate effectively. We focus relentlessly on the things that are most important and will make the most difference.
- Are financially responsible. We make financial choices carefully based on the needs of the children, students and our schools.
- Learn continuously. Getting better is what drives us.
Key Responsibilities
- Security & Privacy Governance Operating Model
- Design and operate TDDA security and privacy governance framework
- Maintain TDDA technology risk register inputs
- Establish security/privacy decision forums and cadence
- Produce quarterly security & privacy posture report
- Privacy-by-Design & DPIA Operations
- Define DPIA thresholds and workflow
- Own DPIA templates and guidance
- Ensure DPIAs are embedded into demand-to-delivery process
- Maintain DPIA register and evidence
- Security Architecture Standards
- Define mandatory security patterns for:
- Identity & access management
- Encryption (at rest & in transit)
- Logging & monitoring
- Segregation of duties
- Key management
- Delivery Gating & Controls
- Ensure initiatives touching data, integrations or AI are security & privacy reviewed
- Gate releases through CAB where controls are not met
- Ensure security and privacy evidence is part of release readiness
- Third-Party & Vendor Risk
- Define minimum security/privacy assurance requirements
- Support vendor due diligence
- Maintain third-party assurance register
- Audit & Evidence
- Maintain audit-ready evidence packs:
- Access reviews
- DPIAs
- Change logs
- Third-party assurance
- Support internal and external audits
- Enablement
- Define secure SDLC expectations with Engineering & Architecture
- Provide training and guidance to TDDA teams
- Decision Rights
- Define mandatory security and privacy controls for TDDA delivery
- Gate or block releases where controls are not met
- Define minimum third-party assurance requirements
Key Responsibilities (Day-to-Day)
- Run DPIA process
- Maintain security standards catalogue
- Review designs through Design Authority
- Participate in CAB
- Track and report risks
Key Deliverables (First 6 Months)
- DPIA workflow live and embedded
- TDDA security standards catalogue
- Third-party assurance checklist
- Quarterly security & privacy report
- First full evidence pack
Success Measures / KPIs
- 100% qualifying initiatives gated through DPIA & security review
- Reduction in unknown integrations / shadow data flows
- Audit evidence completeness and timeliness
- Improved access governance (review completion, least privilege adoption)
Skills, Qualifications and Experience
- 8β10+ years in cyber security and/or privacy operations
- Experience in regulated, multi-country environments
- Strong DPIA and vendor risk expertise
- Risk-based thinking
- Pragmatic control design
- Clear communicator
- Calm under pressure
ISP Commitment to Safeguarding Principles
ISP is committed to safeguarding and promoting the welfare of children and young people and expects all staff and volunteers to share this commitment. All post holders are subject to appropriate vetting procedures, including an online due diligence search, references and satisfactory Criminal Background Checks or equivalent covering the previous 10 yearsβ employment history.
ISP Commitment to Diversity, Equity, Inclusion, and Belonging
ISP is committed to strengthening our inclusive culture by identifying, hiring, developing, and retaining high-performing teammates regardless of gender, ethnicity, sexual orientation and gender expression, age, disability status, neurodivergence, socio-economic background or other demographic characteristics. Candidates who share our vision and principles and are interested in contributing to the success of ISP through this role are strongly encouraged to apply.
Cyber Security & Privacy Manager employer: International Schools Partnership Limited
Contact Detail:
International Schools Partnership Limited Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Cyber Security & Privacy Manager
β¨Tip Number 1
Network like a pro! Get out there and connect with folks in the cyber security and privacy space. Attend industry events, webinars, or even local meetups. You never know who might have the inside scoop on job openings or can put in a good word for you.
β¨Tip Number 2
Show off your skills! Create a portfolio or a personal website that highlights your projects, achievements, and any relevant certifications. This is your chance to demonstrate your expertise in security and privacy governance, so make it shine!
β¨Tip Number 3
Prepare for interviews by researching the company and its values. Understand their approach to security and privacy, and be ready to discuss how your experience aligns with their needs. We want to see that youβre not just a fit for the role, but also for our culture.
β¨Tip Number 4
Donβt forget to apply through our website! Itβs the best way to ensure your application gets seen by the right people. Plus, it shows youβre genuinely interested in joining our team and contributing to our mission of safeguarding children and students.
We think you need these skills to ace Cyber Security & Privacy Manager
Some tips for your application π«‘
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in cyber security and privacy. We want to see how your skills align with the specific responsibilities of the Cyber Security & Privacy Manager role.
Showcase Your Achievements: Donβt just list your duties; share your successes! Use quantifiable results to demonstrate how you've made a difference in previous roles. This helps us see the impact you could have at ISP.
Be Clear and Concise: Keep your application straightforward and to the point. We appreciate clarity, so avoid jargon and ensure your key points stand out. This makes it easier for us to see your qualifications at a glance.
Apply Through Our Website: We encourage you to submit your application directly through our website. This ensures that your application is received promptly and allows us to process it efficiently. Plus, itβs super easy!
How to prepare for a job interview at International Schools Partnership Limited
β¨Know Your Stuff
Make sure you brush up on your cyber security and privacy knowledge. Understand the key responsibilities of the role, especially around DPIA processes and security governance frameworks. Being able to discuss these topics confidently will show that you're serious about the position.
β¨Showcase Your Experience
Prepare specific examples from your past work that demonstrate your expertise in managing security and privacy in regulated environments. Highlight your experience with risk assessments and vendor management, as these are crucial for the role.
β¨Understand Their Values
ISP places a strong emphasis on the well-being of children and students. Be ready to discuss how your approach to cyber security aligns with their principles of care, respect, and continuous learning. This will help you connect with the interviewers on a deeper level.
β¨Ask Smart Questions
Prepare thoughtful questions about the company's current security challenges or their approach to privacy-by-design. This not only shows your interest but also demonstrates your proactive mindset and understanding of the complexities involved in the role.
