Information Security & Compliance Manager

Information Security & Compliance Manager myairops Farnborough, England, United KingdomJoin or sign in to find your next job Join to apply for the Information Security & Compliance Manager role at myairopsInformation Security & Compliance Manager myairops Farnborough, England, United KingdomJoin to apply for the Information Security & Compliance Manager role at myairops/ Position: Information Security & Compliance Manager/ Location: Farnborough HQWe are looking for a hands-on Information Security & Compliance Manager to take ownership of cyber security and data privacy across myairops. This role balances strategic oversight with practical, day-to-day security operations. You\’ll be central to maintaining our SOC 2 Type II accreditation, managing third-party relationships, and ensuring our products and cloud infrastructure are secure, resilient, and compliant.In this role, you will have the unique opportunity to lead our SOC2 audit activities, perform risk management reviews, and drive our vulnerability management program in alignment with industry best practices. Your keen eye for detail and exceptional problem-solving skills will be invaluable in analysing alerts from our monitoring platform and recommending necessary configuration changes and enhancements.We are looking for a self-motivated individual with excellent communication and teamwork abilities, as you will collaborate extensively with cross-functional teams to achieve our security objectives. Your strong attention to detail, process-oriented mindset, and ability to meet deadlines with minimal supervision will be key to your success in this role./ About us:We\’re a friendly team of experts, optimists, big-thinkers and problem-solvers. myairops is a leader of SaaS products to the aviation industry with customers across the globe with diverse challenges including corporate flight departments, brokers, medical providers, military and business aviation operators. Solutions are provided through innovative web delivered software and connected mobile applications./ Responsibilities:Lead security operations across our product and cloud environment (Azure), working closely with DevOps and engineering to ensure security best practices are followed.Manage external relationships with security providers, including penetration testers and SOC 2 Type II auditors.Own the SOC 2 audit process, coordinating internal preparation, evidence collection, and communication with auditors to ensure compliance is maintained.Respond to customer security questionnaires, due diligence requests, and collaborate with sales and customer success to support commercial activities.Oversee and maintain our public security and compliance portal.Conduct technical audits, regular internal reviews, and assess controls against internal policies and external standards.Translate audit findings and test results into clear, actionable tasks for the engineering and DevOps teams.Perform vendor security assessments, managing risk across our supply chain.Manage vulnerability and patch management, ensuring critical software libraries are kept up to date.Enforce security policies, particularly regarding open-source software and licensing compliance.Plan and lead annual Business Continuity and Disaster Recovery tests, reporting outcomes and driving improvements.Evaluate and configure Azure security tooling, including firewall, DDoS, and WAF services.Contribute to governance processes, reviewing change requests for potential impact on security, privacy, and service availability.Collaborate with the Group CIO and DPO, contributing to wider organisational security and data privacy initiatives./ Skills, Qualifications and Experience required:A solid background in cyber or information security, with experience operating at a similar level in cloud environments (ideally Azure) OR possess a degree within cyber or information security with the ability to demonstrate the attitude and aptitude to take this next career stepExperience working in a software environment that is cloud nativeExperience of successfully achieving ISO27001 or preferably SOC2 Type 2Strong understanding of application security, cloud infrastructure, and DevOps practicesAwareness of industry frameworks, such as NCSC Cyber Assessment Framework, Cyber Essentials Plus and OWASPExperience managing and selecting 3rd party vendors for audit and penetration testingExperience interacting with customer security and data privacy teamsExperience conducting or managing penetration tests and security auditsCan produce network and security architecture designs using software such as Microsoft VisioAbility to assess risk and prioritise security tasks in a fast-paced environmentA pragmatic communicator who can bridge the gap between technical teams and auditors/customersExcellent communication and teamwork skills to collaborate effectively with cross-functional teamsDetail-oriented, process-oriented and thoroughMust currently hold or be able to hold UK security clearance to SC level or higherAdvantageousKnowledge of security and data privacy controls within Microsoft Azure Cloud stack with hands on experience configuring and monitoring within AzureKnowledge of UK Government security standardsKnowledge of PCI-DSS and achieving suitable standards within software/ In addition to a Competitive Salary, we will offer you:Comprehensive Private Healthcare (after successful passing of probation) *Electric Car SchemeFree Car ParkingDiscounts at popular Retailers2 Paid Volunteering Days each calendar year (subject to line manager approval)Investment in Training, Qualifications and Professional Development* (Subject to insurance underwriting)Due to the volume of applications received, only candidates selected for interview will be contacted. If you do not hear from us within 20 working days then your application has been unsuccessful on this occasion.Seniority level Seniority level Mid-Senior levelEmployment type Employment type Full-timeJob function Job function OtherIndustries Airlines and Aviation and Software DevelopmentReferrals increase your chances of interviewing at myairops by 2xGet notified about new Security Compliance Manager jobs in Farnborough, England, United Kingdom .Weybridge, England, United Kingdom 1 month agoReading, England, United Kingdom 1 day agoBrentford, England, United Kingdom 1 day agoSurrey, England, United Kingdom 1 day agoWindsor, England, United Kingdom 6 days agoRegional Manager Health & Safety, Security, Quality & Compliance Feltham, England, United Kingdom 3 weeks agoSenior Delivery Manager (DV Security Clearance) Reading, England, United Kingdom 3 days agoHounslow, England, United Kingdom 2 weeks agoFarnborough, England, United Kingdom 5 days agoSenior Partner Marketing & Field Activation Manager, EMEA Reading, England, United Kingdom 5 days agoCamberley, England, United Kingdom 2 weeks agoGuildford, England, United Kingdom 1 week agoReading, England, United Kingdom 1 week agoGuildford, England, United Kingdom 1 week agoKingston Upon Thames, England, United Kingdom 2 days agoReading, England, United Kingdom 1 week agoSenior Security Solutions Sales Specialist Reading, England, United Kingdom 1 week agoRuislip, England, United Kingdom 1 month agoEnterprise Account Manager – Public Sector – Central & Local Government Reading, England, United Kingdom 2 weeks agoFarnborough, England, United Kingdom 2 months agoGuildford, England, United Kingdom 2 weeks agoByfleet, England, United Kingdom 6 days agoSlough, England, United Kingdom 4 days agoLeatherhead, England, United Kingdom 1 week agoWe\’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr