At a Glance
- Tasks: Lead the Security & Compliance team and ensure AI platform security.
- Company: Join Ophelos Tech, an innovative AI-first organisation.
- Benefits: Hybrid working, career growth, and a supportive team culture.
- Other info: Dynamic role with opportunities to influence and drive change.
- Why this job: Shape security practices in a fast-paced tech environment and make a real impact.
- Qualifications: Experience in security programmes and knowledge of compliance frameworks.
The predicted salary is between 36000 - 60000 £ per year.
We are looking for an experienced and strategic Information Security Manager to lead our newly forming Security & Compliance team. Reporting to the Engineering Director of Ophelos Tech, you will be joining Ophelos at a pivotal moment - we have consistently excelled at meeting compliance obligations (our previous ISO27001 audit came back with zero findings!), but we are now moving into a new AI-powered world with evolving compliance requirements to navigate and remediate.
Ophelos Tech is an AI-first technical organisation, and our platform makes significant use of LLM agents both in development and production contexts. A major part of this role will be ensuring their use is safe, compliant, and that the right guardrails are in place. You will be working at the bridge between "startup" and "scaleup", where introducing security discipline to a fast-moving technical organisation becomes paramount. This role requires significant self-direction - you will need to surface security issues proactively, prioritise them effectively, and facilitate their remediation across the organisation.
Ophelos Tech operates hybrid working, and believe face-to-face working time is essential for planning and alignment. Our teams spend two days each week working in-person from our comfortable office near Liverpool Street in London.
In this role, you’ll get to:
- Lead. Build and shape our new Security & Compliance team, managing and coaching your reports as they grow their careers within the organisation.
- Own our security and compliance posture - maintaining and advancing our ISO27001 certification, UK GDPR obligations, and navigating broader frameworks including NIST, ISO31000, and CIS controls.
- Partner with our Product-Engineering teams to ensure our AI-native platform operates with appropriate security guardrails and controls, with privacy-by-design embedded from the start.
- Stay ahead of emerging AI compliance standards such as ISO42001 and the EU AI Act, and manage external audits and certification renewals end-to-end.
- Drive security incident response efforts, leveraging observability tooling (Datadog and incident.io) to enhance monitoring and build meaningful dashboards and metrics.
- Foster a security-aware culture across the organisation through training, awareness programmes, and cross-functional collaboration.
About you
We believe that no one is the finished article - however, some experience in the following is important for this role:
- A proven track record of implementing security programmes in dynamic, fast-growing environments, particularly at the "startup" to "scaleup" bridge.
- Strong working knowledge of ISO27001, UK GDPR, and broader frameworks such as NIST, ISO31000, and CIS controls.
- Experience managing external audits and vendor/third-party security risk assessments.
- Familiarity with AI compliance considerations - experience with ISO42001 or the EU AI Act is a bonus, but a genuine enthusiasm for navigating this evolving landscape is essential.
- You thrive at the intersection of compliance, technology, and people - equally comfortable in the weeds of a technical platform and in the room securing organisational buy-in.
- You are excited about Ophelos' mission to support households and businesses in breaking the vicious debt cycle.
Information Security Manager employer: Ophelos, part of Intrum
Ophelos Tech is an exceptional employer, offering a dynamic work environment where innovation meets compliance. With a strong focus on employee growth, you will have the opportunity to lead and shape a new Security & Compliance team while working in a hybrid model that balances in-person collaboration with flexible remote work. Located near Liverpool Street in London, our culture fosters a security-aware mindset and encourages proactive engagement, making it an ideal place for those passionate about navigating the evolving landscape of AI compliance.
StudySmarter Expert Advice🤫
We think this is how you could land Information Security Manager
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the industry. Attend meetups, webinars, or even just grab a coffee with someone who’s already in the field. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! If you’ve got a portfolio or any projects that highlight your experience in security and compliance, make sure to share them during interviews. It’s a great way to demonstrate your expertise and passion for the role.
✨Tip Number 3
Prepare for those tricky interview questions! Research common questions for Information Security Managers and practice your responses. Think about how your past experiences align with the challenges Ophelos is facing, especially around AI compliance and security frameworks.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in being part of the Ophelos team and contributing to our mission.
We think you need these skills to ace Information Security Manager
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that align with the Information Security Manager role. Highlight your experience with ISO27001, UK GDPR, and any relevant frameworks to show us you’re the right fit.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to tell us why you’re passionate about security and compliance, and how your background makes you the perfect candidate for our team at Ophelos Tech.
Showcase Your Proactive Approach:In your application, give examples of how you've proactively identified and addressed security issues in previous roles. We love candidates who can demonstrate self-direction and initiative!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from our team!
How to prepare for a job interview at Ophelos, part of Intrum
✨Know Your Stuff
Make sure you brush up on your knowledge of ISO27001, UK GDPR, and other relevant frameworks. Be ready to discuss how you've implemented security programmes in fast-paced environments before. This shows you're not just familiar with the theory but have practical experience too.
✨Show Your Strategic Side
Ophelos is looking for someone who can lead and shape their new Security & Compliance team. Prepare examples of how you've built teams or led initiatives in the past. Highlight your ability to surface security issues proactively and prioritise them effectively.
✨Get Familiar with AI Compliance
Since Ophelos is moving into an AI-powered world, it’s crucial to understand emerging AI compliance standards like ISO42001 and the EU AI Act. Even if you don’t have direct experience, show your enthusiasm for navigating this evolving landscape and how you stay updated on industry trends.
✨Emphasise Collaboration
This role requires working closely with Product-Engineering teams. Be prepared to discuss how you've fostered a security-aware culture in previous roles and how you’ve collaborated cross-functionally to ensure security measures are embedded from the start.
