Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security strategy and operations in a dynamic software company.
- Company: Exciting tech company focused on streamlining operations across various industries.
- Benefits: 25 days holiday, wellbeing days, enhanced pension, and flexible benefits.
- Why this job: Make a real impact on security compliance and strategy in a fast-paced environment.
- Qualifications: Strong background in information security, especially in SaaS or cloud environments.
- Other info: Join a people-first culture with opportunities for growth and regular social events.
The predicted salary is between 40000 - 48000 £ per year.
Job Description
Role: Information Security OfficerLocation: Milton Keynes
Salary: £50k – £60kWork Pattern: Hybrid
Summary:A new position has opened at an exciting software company for an Information Security Officer to lead the organisation's security strategy, operations, and compliance efforts. This hands-on role blends strategic security architecture with day-to-day operational management and regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance.
The Company:They are a technology company helping organizations streamline operations and deliver exceptional experiences across education, events, and related industries. With many years of experience and a broad global client base, they develop solutions that simplify complexity and drive smarter, more efficient ways of working.Core Responsibilities:Strategic (30%)
- Define and maintain robust security architecture and standards across multi-cloud SaaS platforms.
- Integrate security best practices into product design, development, and roadmap planning.
- Conduct threat modelling and risk assessments for new features and system changes.
- Evaluate and recommend security technologies and tools.
Operational (40%)
- Manage security environments across Azure and AWS infrastructure.
- Lead incident response efforts and coordinate vulnerability remediation activities.
- Manage continuous security monitoring, alerting, and detection systems.
- Administer vulnerability management and penetration testing programs.
- Maintain strong identity, access, and privilege management controls.
Compliance & Assurance (30%)
- Manage and maintain ISO 27001 certification and audit processes.
- Ensure ongoing compliance with PCI DSS for payment-related systems.
- Oversee GDPR compliance across products, services, and internal operations.
- Complete HECVAT assessments and respond to security questionnaires for higher education tenders.
- Support sales and customer success with security documentation and evidence.
- Serve as the primary point of contact for all customer and prospect security inquiries.
Requirements:
- Strong background in information security within SaaS or cloud environments (ISV or B2B preferred).
- Proven track record managing ISO 27001 certification and compliance.
- Hands-on experience implementing GDPR in software products.
- Working knowledge of PCI DSS and securing payment systems.
- Deep understanding of cloud security across Azure and/or AWS.
- Skilled in application security and the secure development lifecycle (SDLC).
- Experienced in incident response and cross-functional coordination.
- Confident supporting tenders and delivering client security assurance.
Preferrable If You….
- Professional certifications such as CISSP, CISM, CISA, or equivalent.
- Experience in or supporting the higher education sector.
- Strong understanding of multi-tenant SaaS security.
- Knowledge of DevSecOps and integrating security in CI/CD pipelines.
- Familiarity with NIST, CIS Controls, OWASP, and other security frameworks.
- Awareness of global data protection and multi-jurisdictional privacy requirements.
- Experience supporting enterprise sales cycles with security expertise and assurance.
Benefits:
- 25 days' holiday plus bank holidays, with additional days awarded for length of service.
- Two paid wellbeing days each year, with a budget to spend quality time doing what matters most to you.
- Enhanced pension contributions to help support your future.
- Two paid volunteering days annually for charity, community, or sustainability initiatives.
- Salary sacrifice schemes for electric vehicles and cycle-to-work.
- 24/7 Employee Assistance Programme offering confidential advice and wellbeing support.
- Annual health check to help you stay at your best.
- Flexible benefits platform with options including life assurance, learning opportunities, retail discounts, and more.
- People-first culture focused on growth, wellbeing, and balance.
- Performance-related bonus recognising your impact and achievements.
- Regular social events and team activities, plus opportunities to join company-wide gatherings and learning forums in the UK and abroad.
Apply Now!
If you're an experienced Information Security professional looking to take ownership of security strategy, operations, and compliance in a dynamic SaaS environment, this is the perfect opportunity to make your mark.
Referrals:
If this role isn't right for you, do you know someone that might be interested? You could earn £500 of retail vouchers if you refer a successful candidate to Oscar. Email: to recommend someone for this role
Role: Information Security OfficerLocation: Milton Keynes
Salary: £50k – £60kWork Pattern: Hybrid
Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy.
To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Information Security Officer employer: Oscar Technology
Contact Detail:
Oscar Technology Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Officer
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend relevant meetups, and engage with professionals on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Prepare for interviews by researching the company and its security practices. Familiarise yourself with their products and think about how your skills can enhance their security strategy. This will show you're genuinely interested and ready to contribute.
✨Tip Number 3
Practice your responses to common interview questions, especially those related to compliance and incident response. Use the STAR method (Situation, Task, Action, Result) to structure your answers and highlight your achievements effectively.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who take the initiative to connect directly with us.
We think you need these skills to ace Information Security Officer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Officer role. Highlight your experience with ISO 27001, GDPR, and cloud security. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how you can contribute to our team. Keep it concise but impactful – we love a good story!
Showcase Relevant Experience: When filling out your application, be sure to showcase any hands-on experience you've had in managing security environments or compliance efforts. We’re keen on seeing real-world examples of your work!
Apply Through Our Website: Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it makes the process smoother for everyone involved!
How to prepare for a job interview at Oscar Technology
✨Know Your Security Standards
Make sure you’re well-versed in ISO 27001, PCI DSS, and GDPR. Brush up on how these standards apply to the role and be ready to discuss your experience with them. This will show that you understand the compliance landscape and can hit the ground running.
✨Showcase Your Technical Skills
Prepare to talk about your hands-on experience with cloud security, especially in Azure and AWS. Be ready to share specific examples of how you've managed security environments or led incident response efforts. This will demonstrate your practical knowledge and problem-solving abilities.
✨Understand the Company’s Products
Research the company’s software solutions and think about how security best practices can be integrated into their product design and development. Showing that you understand their offerings will help you connect your skills to their needs during the interview.
✨Prepare for Scenario-Based Questions
Expect questions that ask how you would handle specific security incidents or compliance challenges. Think through potential scenarios related to vulnerability management or risk assessments, and be ready to articulate your thought process and decision-making strategies.
