Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber security initiatives and ensure compliance with industry standards.
- Company: Join PEXA, a revolutionary tech company transforming property settlement in Australia and the UK.
- Benefits: Enjoy competitive salary, wellness support, and flexible work-life balance.
- Why this job: Make a real impact in cyber security while working with innovative technology.
- Qualifications: 5+ years in cyber security with strong stakeholder engagement skills.
- Other info: Be part of a passionate team dedicated to innovation and customer satisfaction.
The predicted salary is between 36000 - 60000 £ per year.
Hi, we’re PEXA! We revolutionised the way that property is settled in Australia, turning a paper-based process into a digital one. Our solution is a world-first, with over 500 people across Australia and an expanding international team, helping 20,000+ families into their homes each week. We’re passionate about solving problems for our customers – always striving to set the standard for how property is bought and sold.
The Information Security Manager / Cyber Security Business Partner (CSBP) plays a vital role in ensuring the alignment of cyber security initiatives with the strategic and operational goals of the organisation. This role serves as a key interface between business units and the cyber security function, delivering risk-based guidance, promoting a strong security culture, and enabling security innovation.
You will have experience managing customer cyber assurance activities, supporting external audits (e.g., ISO 27001, Cyber Essentials Plus), and maintaining regulatory compliance, particularly with Financial Conduct Authority (FCA) cyber-related controls. Proficiency in cloud security controls and an ability to translate cyber risk into business context are essential.
Key Accountabilities- Cyber Security Partnership & Advisory
- Act as the security point of contact for UK business units, aligning cyber security goals with business priorities.
- Provide guidance on secure-by-design principles during project planning, procurement, and solution development.
- Build strong relationships across technical and non-technical stakeholders to promote security best practices.
- Ensure that the business’ information security posture is continuously improved through proactive security measures, monitoring, and reporting.
- Customer Cyber Assurance & Regulatory Compliance
- Lead and manage customer cyber security assurance activities, including due diligence and technical assurance engagements.
- Support the development and maintenance of materials that evidence the organisation’s cyber maturity and compliance posture.
- Liaise with internal audit and risk functions to ensure cyber and information security controls align with FCA expectations and industry standards.
- External Audit & Certification Support
- Lead preparation and support for external audits, including ISO 27001, Cyber Essentials and Cyber Essentials Plus, customer and regulatory assessments.
- Collaborate with compliance, risk, and IT teams to ensure audit readiness and implement improvements.
- Cloud Security & Technology Risk
- Provide expertise on cloud security controls (e.g. identity and access management, encryption, logging, secure configuration) across AWS and Azure environment.
- Ensure secure adoption of cloud-native services in accordance with recognised frameworks (e.g., CIS Benchmarks, NIST, OWASP).
- Risk Management & Governance
- Identify and assess cyber risks within business processes and technology environments.
- Support risk mitigation planning, tracking, and reporting in line with enterprise risk frameworks.
- Awareness, Culture & Reporting
- Contribute to business-targeted cyber security awareness and education initiatives.
- Promote a culture of shared accountability for security and resilience.
- Produce and maintain reporting information as required.
Required: 5+ years’ experience in a cyber security, risk, or assurance role, with strong stakeholder-facing exposure. Demonstrable experience with customer cyber assurance activities, external audit preparation, including ISO 27001, Cyber Essentials Plus. Proficient in cloud security (AWS, Azure, or GCP), including security control implementation and risk assessment. Working knowledge of NIST, ISO 27001, FCA Handbook (SYSC), and relevant NCSC guidance. Excellent verbal and written communication skills, with the ability to engage effectively at all business levels.
Desirable: Background in financial services or regulated industries. Experience in third-party/vendor risk assessment and assurance. Relevant Cyber Security or IT degree level education. ISO 27001 Lead Implementer / Auditor. CISSP, CISM, CRISC. AWS/Azure security certifications.
Sounds like you? We at PEXA are ready so if this role sounds like you apply today.
Cyber Security Business Partner (Information Security Manager) in Leeds employer: PEXA UK
Contact Detail:
PEXA UK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Business Partner (Information Security Manager) in Leeds
✨Tip Number 1
Network like a pro! Reach out to current PEXA employees on LinkedIn and ask them about their experiences. A friendly chat can give you insider info and might just get your foot in the door.
✨Tip Number 2
Prepare for the interview by understanding PEXA's mission and values. Show us how your skills align with our goals, especially in cyber security. We love candidates who are genuinely passionate about what we do!
✨Tip Number 3
Practice your responses to common interview questions, but keep it natural. We want to see your personality shine through, so don’t be afraid to let your enthusiasm for the role show!
✨Tip Number 4
Apply directly through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows us you’re serious about joining the PEXA team.
We think you need these skills to ace Cyber Security Business Partner (Information Security Manager) in Leeds
Some tips for your application 🫡
Do Your Homework: Before you start writing your application, take a moment to research PEXA. Understanding our mission and values will help you tailor your application to show how you fit into our culture.
Be Authentic: We want to hear your unique voice! Don’t be afraid to let your personality shine through in your application. Share your passion for cyber security and how it aligns with what we do at PEXA.
Highlight Relevant Experience: Make sure to showcase your experience in cyber security, especially any work related to customer assurance and regulatory compliance. Use specific examples to demonstrate your skills and achievements.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets to us quickly and efficiently. Plus, it shows you’re serious about joining the PEXA team!
How to prepare for a job interview at PEXA UK
✨Know Your Cyber Security Stuff
Make sure you brush up on your knowledge of cyber security principles, especially those relevant to the role. Familiarise yourself with ISO 27001 and Cyber Essentials Plus, as well as cloud security controls in AWS and Azure. Being able to discuss these topics confidently will show that you're serious about the position.
✨Understand PEXA's Mission
Before the interview, take some time to understand PEXA's goals and how they revolutionise property settlement in Australia. This will help you align your answers with their mission and demonstrate your enthusiasm for being part of their journey in the UK market.
✨Prepare Real-World Examples
Think of specific examples from your past experience that showcase your skills in managing customer cyber assurance activities and supporting external audits. Be ready to explain how you've successfully navigated challenges and contributed to a strong security culture in previous roles.
✨Build Rapport with Interviewers
PEXA values strong relationships across teams, so be personable and engaging during your interview. Show your ability to communicate effectively with both technical and non-technical stakeholders. A friendly attitude can go a long way in making a positive impression!
