Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead business continuity and enhance information security management across multiple jurisdictions.
- Company: Join a leading professional services firm with a focus on innovation and security.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Why this job: Make a real impact in safeguarding information security and business resilience.
- Qualifications: Experience in information security management and strong communication skills required.
- Other info: Dynamic role with a culture of continuous improvement and collaboration.
The predicted salary is between 36000 - 60000 £ per year.
As a leading professional services firm, we are seeking a highly skilled Information Security Manager to join our Information Security & Risk department. The successful candidate will be responsible for running our business continuity framework alongside maintaining and enhancing our information security management programme. This pivotal role covers planning, testing and training for business continuity, third party security risk management, business impact assessments, ISO 27001 governance, policy management, and internal auditing in line with global best practices.
Key Responsibilities
- Business Continuity Management
- Lead the development, update and ongoing management of the firm's Business Continuity Plans (BCP), ensuring it remains current and effective across all jurisdictions.
- Organise and conduct BCP tests with local business continuity groups, including documentation, reporting and follow-up of test outcomes.
- Provide business continuity training and run targeted group business continuity sessions for employees.
- Undertake Business Impact Assessments (BIAs) with various teams to ensure understanding and documentation of Recovery Time Objectives (RTOs), Recovery Point Objectives (RPOs), system criticality and dependencies, supporting disaster recovery planning.
- Security and Third Party Risk Management
- Manage and complete information security assessments and Due Diligence Questionnaires (DDQs) received from clients.
- Support outgoing third party assessments, onboarding and risk reviews, including working directly with third parties to address security requirements.
- Oversee third party risk management from a security perspective, ensuring risks are documented, reported and mitigated as appropriate.
- ISO 27001 Governance and Internal Audit
- Support the firm's ongoing ISO 27001 certification and framework, including continuous improvement of the ISMS (Information Security Management System).
- Develop and maintain the firm's information security policies and procedures in line with industry best practice and regulatory requirements across all jurisdictions.
- Undertake clause-based auditing, policy reviews and control monitoring as part of the ISO 27001 role.
- Liaise with internal and external auditors and regulatory bodies during information security audits and reviews.
- Training and Awareness
- Deliver induction and information security training for all new joiners to the firm.
- Develop and run targeted information security training and awareness programmes for specific business units.
- Maintain a high level of information security awareness across the business through communications and engagement initiatives.
- Other Responsibilities
- Support the firm's response to information security incidents, including investigation, documentation and coordination as required.
- Keep abreast of latest trends, threats and technologies; provide advisory and guidance as appropriate.
- Contribute to a culture of continual improvement, integrity, confidentiality and resilience across the firm.
Skills, Knowledge and Expertise
- Proven experience in information security management, business continuity planning and risk management, ideally within a professional services or legal firm environment.
- Experience supporting and/or maintaining ISO 27001 certification and managing an ISMS.
- Strong knowledge of business impact assessments, disaster recovery, RTOs/RPOs, and system criticality mapping.
- Excellent communication and interpersonal skills, with the ability to deliver effective training and collaborate across global teams.
- Analytical and detail-oriented, with a proactive approach to risk identification and mitigation.
- Professional certifications such as CISSP, CISM, ISO 27001 Lead Implementer/Auditor, CBCP, or equivalent are desirable.
Information Security Manager in London employer: Ogier
Contact Detail:
Ogier Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at events. A friendly chat can open doors that a CV just can't.
✨Tip Number 2
Prepare for interviews by practising common questions and scenarios related to information security. We recommend role-playing with a friend to boost your confidence.
✨Tip Number 3
Showcase your skills through real-life examples. When discussing your experience, highlight specific projects or challenges you've tackled in information security management.
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets noticed and you’re considered for the role.
We think you need these skills to ace Information Security Manager in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Manager role. Highlight your experience in business continuity planning, risk management, and ISO 27001 certification. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your background makes you a perfect fit for our team. Keep it engaging and relevant to the job description.
Showcase Your Achievements: Don’t just list your responsibilities; showcase your achievements! Use specific examples of how you've improved security processes or managed successful business continuity plans. We love seeing quantifiable results!
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to keep track of your application status. Plus, we can’t wait to hear from you!
How to prepare for a job interview at Ogier
✨Know Your Stuff
Make sure you brush up on your knowledge of ISO 27001 and business continuity management. Be ready to discuss how you've implemented these frameworks in the past, as well as any challenges you've faced and how you overcame them.
✨Showcase Your Communication Skills
As an Information Security Manager, you'll need to communicate complex security concepts clearly. Prepare examples of how you've delivered training or collaborated with teams to enhance security awareness. This will demonstrate your ability to engage and educate others.
✨Be Ready for Scenario Questions
Expect questions that put you in hypothetical situations related to risk management or incident response. Think through your approach to handling a security breach or conducting a Business Impact Assessment, and be prepared to explain your thought process.
✨Stay Current with Trends
Keep yourself updated on the latest trends and threats in information security. Bring up recent developments during your interview to show your passion for the field and your commitment to continual improvement in security practices.