At a Glance
- Tasks: Lead and enhance Information Security frameworks while managing risks across the Group.
- Company: Diverse and inclusive workplace committed to equal opportunities.
- Benefits: Competitive salary, professional development, and a supportive team environment.
- Other info: Join a team that values diversity and celebrates unique perspectives.
- Why this job: Make a real impact on security governance and risk management in a dynamic setting.
- Qualifications: Proven experience in Information Security and strong stakeholder engagement skills.
The predicted salary is between 61408 - 68231 Β£ per year.
You will be a seasoned Information Security professional able to support and maintain governance and leading frameworks such as NIST CSF and the UK Cyber Assessment Framework (CAF) to identify, assess and manage risks across the Group. You will develop risk metrics (KPIs/KRIs), deliver security training and awareness programmes and lead third-party cyber, information and AI security due diligence. This would include ongoing monitoring of risks and incidents. The role also involves supporting audits, driving continuous improvement across policies and controls, and implementing monitoring solutions using Microsoft Purview and DLP. Working closely with the CISO and Cyber Security team, you will contribute to governance, reporting and incident response, while building strong stakeholder relationships across IT, Risk and the wider business.
In a nutshell, responsibilities include:
- Maintain and enhance Information Security governance frameworks aligned to NIST CSF and CAF
- Define and report on security risk metrics, KPIs and KRIs
- Identify and assess Information Security risks across business and technology environments
- Deliver engaging security awareness and training programmes
- Conduct third-party cyber, information and AI security due diligence
- Support audit and assurance activities, including evidence collation
- Drive continuous improvement across policies, processes and controls
- Support Microsoft Purview and DLP monitoring capabilities
- Partner with the CISO on governance, reporting and incident response activities
Qualifications:
- You are a proactive and detail-oriented Information Security professional with experience working in regulated environments and a passion for improving security maturity.
- Proven experience in third-party security due diligence
- Experience delivering Information Security training and awareness
- Hands-on experience with Microsoft Purview and DLP
- Strong understanding of risk management and governance
- Experience working within regulated environments
- Experience developing policies, processes and standards
- Knowledge of cloud and SaaS-based environments
- CISM or equivalent certification
- Strong presentation and stakeholder engagement skills
- Experience reviewing technical security designs
Together embraces diversity and inclusion, and are proud to be an equal opportunity workplace. Not only do we welcome difference β we celebrate it, support it and really value our colleagues for who they are. We are committed to building a team that represents a variety of backgrounds, perspectives and skills.
Information Security Manager in Manchester employer: Manchester Digital
As an Information Security Manager at our company, you will thrive in a dynamic and inclusive work environment that prioritises employee growth and development. We offer comprehensive training programmes, competitive benefits, and the opportunity to work alongside industry leaders in a collaborative setting, all while contributing to the security maturity of our organisation. Our commitment to diversity ensures that every voice is heard and valued, making this an exceptional place to build your career.
