At a Glance
- Tasks: Lead Sightsavers' information security strategy and protect data from cyber threats.
- Company: Join Sightsavers, a global leader in eliminating avoidable blindness and promoting rights.
- Benefits: Enjoy generous leave, pension, wellness discounts, and a modern office environment.
- Other info: Flexible remote work with occasional office visits; great career growth opportunities.
- Why this job: Make a real impact in cybersecurity while working remotely and collaborating with diverse teams.
- Qualifications: Experience in information security and relevant certifications like CISSP or CISM required.
The predicted salary is between 45405 - 53418 £ per year.
Location: Remote, with a requirement to work from our modern Haywards Heath office approximately once per month
Contract: Permanent
Salary: £45,405 to £53,418 depending on experience, with scope for discussion at interview
Sightsavers implements projects in over 30 countries in Africa and South Asia working to eliminate avoidable blindness and promote the rights of people with disabilities.
About the role
In this role, you will lead Sightsavers information security function, ensuring our systems, services and data are protected from evolving cyber threats. You will drive the development and delivery of our information security strategy, working closely with teams across the organisation to strengthen controls and embed secure ways of working. This will include overseeing key areas such as vulnerability management, patching and compliance activities, as well as identifying and assessing risks and supporting colleagues to put effective, practical safeguards in place. Acting as the organisation’s subject matter expert, you will play a central role in managing audits, supporting incident response and ensuring we meet key security standards, while continuously improving our overall security approach.
Responsibilities
- Lead the development and delivery of Sightsavers information security strategy, ensuring it aligns with organisational priorities
- Oversee key security controls, including patching, vulnerability management and change control processes
- Identify and assess information security risks across the organisation, supporting teams to implement practical solutions
- Provide expert advice and guidance on information security controls to protect systems, services and data
- Act as the organisation’s subject matter expert for audits, reviews and security assurance activities
- Maintain compliance with key standards and certifications, including Cyber Essentials and PCI-DSS
- Lead or support the investigation of security incidents, ensuring lessons learned are captured and acted upon
- Provide guidance on information governance, including data access, classification and retention practices
- Monitor emerging cyber threats, trends and regulatory requirements, recommending improvements where needed
- Promote awareness of information security across the organisation, encouraging good practice and secure behaviours
- Build strong relationships with internal teams, suppliers and external partners to embed security into day-to-day operations
- Support continuous improvement of security processes, ensuring controls remain effective and fit for purpose
This is a highly varied and involved role and the above is not an exhaustive list of duties or required professional skills.
Skills and Experience
You will bring strong experience in information security, cyber risk or security governance within a complex organisation, along with a recognised certification such as CISSP, CISM or ISO 27001, or equivalent experience. As the Information Security Manager, you will have a solid understanding of security standards and frameworks, including PCI-DSS, and be confident working with both technical and non-technical stakeholders, translating complex issues into clear, practical guidance. You will be highly organised, with strong attention to detail, and able to manage competing priorities while taking a proactive, solutions-focused approach to risk. Strong communication and relationship-building skills will be key, as you work collaboratively across teams and with external providers, and you will have a genuine interest in continuous improvement and staying up to date with emerging threats and best practice.
Benefits
Sightsavers offers some fantastic benefits. Our comprehensive benefits package includes generous annual leave allowance, pension, season ticket loan, cycle to work scheme, discounted gym memberships and wellness discounts. If you choose to work in or are visiting our collaborative, modern office space, you will find it an easy 20-minute train journey from Brighton or 45 minutes from London.
Jobholder Requirements
Essential
- Strong experience working in information security, cyber risk or security governance within a complex organisation
- A recognised professional certification such as CISSP, CISM or ISO 27001 (or equivalent experience)
- Solid understanding of security standards and compliance frameworks, including PCI-DSS
- Experience applying security principles in a practical, real-world environment
- Confident working with both technical and non-technical stakeholders
- Strong communication skills, with the ability to translate complex information into clear, practical guidance
- Highly organised, with strong attention to detail and the ability to manage competing priorities
- Experience working within an outsourced or multi-supplier environment
Desirable
- Good technical understanding of IT infrastructure and security technologies
- Ability to explain technical risks and concepts to a range of audiences across the organisation
- Experience supporting audits, compliance frameworks or certification processes
- An interest in staying up to date with emerging threats, trends and best practice in information security
As an equal opportunity employer, we actively encourage applications from all sections of the community. Sightsavers is a Disability Confident Leader and qualified people with a disability are particularly encouraged to apply.
Remote Information Security Manager — Strategy & Risk in Haywards Heath employer: Sightsavers, Inc
Sightsavers is an exceptional employer, offering a dynamic work culture that prioritises employee well-being and professional growth. With a comprehensive benefits package, including generous annual leave and wellness discounts, employees enjoy a supportive environment that fosters collaboration and innovation. The opportunity to work remotely while occasionally visiting our modern Haywards Heath office, conveniently located near Brighton and London, adds to the appeal of joining a mission-driven organisation dedicated to eliminating avoidable blindness and promoting the rights of people with disabilities.
StudySmarter Expert Advice🤫
We think this is how you could land Remote Information Security Manager — Strategy & Risk in Haywards Heath
✨Tip Number 1
Network like a pro! Reach out to folks in the information security field on LinkedIn or at industry events. Building connections can lead to job opportunities that aren’t even advertised yet.
✨Tip Number 2
Prepare for those interviews! Research Sightsavers and understand their mission. Be ready to discuss how your experience aligns with their information security strategy and how you can help them tackle cyber threats.
✨Tip Number 3
Show off your expertise! Bring examples of past projects where you’ve successfully managed security risks or led compliance initiatives. This will demonstrate your hands-on experience and problem-solving skills.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at Sightsavers.
We think you need these skills to ace Remote Information Security Manager — Strategy & Risk in Haywards Heath
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience in information security and risk management. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant achievements!
Showcase Your Certifications:If you've got certifications like CISSP, CISM, or ISO 27001, make them stand out! We love seeing that you’ve got the credentials to back up your expertise in security standards and frameworks.
Be Clear and Concise:When writing your application, keep it straightforward. Use clear language to explain your experience and how it relates to the job. We appreciate a well-structured application that gets straight to the point!
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Sightsavers, Inc
✨Know Your Stuff
Make sure you brush up on your information security knowledge, especially around frameworks like PCI-DSS and certifications like CISSP or CISM. Be ready to discuss how you've applied these principles in real-world scenarios.
✨Speak Their Language
Since you'll be working with both technical and non-technical stakeholders, practice translating complex security concepts into simple terms. This will show that you can communicate effectively across different teams.
✨Show Your Organisational Skills
Prepare examples that highlight your ability to manage competing priorities and stay organised. Think of times when you successfully handled multiple projects or tasks while maintaining attention to detail.
✨Stay Current
Demonstrate your interest in emerging threats and best practices in information security. Bring up recent trends or incidents in the field during your interview to show that you're proactive about staying informed.
