Information Security Manager

NTT Data is a leading Managed Service Provider (MSP) with a global reach empowering local teams, undertaking hugely exciting work and genuinely changing the world. We specialise in delivering cutting-edge IT and cybersecurity solutions to our diverse client base. We provide expert-managed services to help clients protect their data, comply with regulations, and manage evolving cyber threats.

We are looking for a skilled Information Security Manager to join our team and be billed out to a key client to enhance their information security posture.

What you will be doing:

• Act as the primary information security point of contact for relevant teams, developing a trusted relationship and advising on all aspects of cybersecurity.
• Develop, implement, and maintain information security policies, procedures, and frameworks, ensuring alignment with industry standards (e.g., ISO 27001, NIST) and legal requirements (e.g., GDPR, Cyber Essentials).
• Conduct security risk assessments and vulnerability management for the client, providing actionable recommendations to mitigate risks.
• Lead incident detection, investigation, and response efforts, ensuring minimal impact to the client’s business operations.
• Collaborate with the client’s IT and business teams to integrate security solutions and processes that align with their goals.
• Deliver regular reporting to the client on security status, incidents, risks, and compliance with agreed SLAs and KPIs.
• Provide guidance and support for the client in meeting their regulatory obligations (e.g., GDPR compliance, data protection).
• Oversee and lead security audits, penetration testing, and vulnerability assessments for the client.
• Manage security awareness training programs for the client’s staff, fostering a culture of cybersecurity awareness.
• Provide ongoing advice on emerging threats, vulnerabilities, and security best practices, helping the client stay ahead of the curve.
• Ensure that the client’s information security posture is continuously improved through proactive security measures, monitoring, and reporting.

What you will bring:

• Proven experience (typically 5+ years) in information security management or a related role, preferably within an MSP or client-facing environment.
• Strong understanding of UK and international cybersecurity regulations, including GDPR, Cyber Essentials, and ISO 27001.
• Experience managing and leading security operations, incident response, and risk assessments.
• Understanding and knowledge of security technologies (SIEM, firewalls, endpoint protection, encryption, etc.) and practices (vulnerability management, penetration testing).
• Experience working in a service delivery or consultancy capacity with external clients.
• Excellent communication skills, able to convey technical security information to non-technical stakeholders at all levels.
• Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
• Ability to work independently, take initiative, and work in a dynamic environment.
• Proactive approach to identifying and solving problems before they escalate.
• Strong leadership and mentoring skills to support junior staff and teams.
• Ability to translate business needs into security solutions.

Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation.

We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.

We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce.