At a Glance
- Tasks: Lead and enhance information security strategies to protect vital data and systems.
- Company: Join Sightsavers, a global leader in eliminating avoidable blindness and promoting disability rights.
- Benefits: Enjoy generous leave, pension, wellness discounts, and a modern office environment.
- Other info: Remote work with monthly office visits; excellent career growth opportunities await!
- Why this job: Make a real impact in cybersecurity while working with diverse teams across the globe.
- Qualifications: Experience in information security and relevant certifications like CISSP or CISM required.
The predicted salary is between 45405 - 53418 € per year.
Sightsavers implements projects in over 30 countries in Africa and South Asia working to eliminate avoidable blindness and promote the rights of people with disabilities.
In this role, you will lead Sightsavers information security function, ensuring our systems, services and data are protected from evolving cyber threats. You will drive the development and delivery of our information security strategy, working closely with teams across the organisation to strengthen controls and embed secure ways of working. This will include overseeing key areas such as vulnerability management, patching and compliance activities, as well as identifying and assessing risks and supporting colleagues to put effective, practical safeguards in place. Acting as the organisation’s subject matter expert, you will play a central role in managing audits, supporting incident response and ensuring we meet key security standards, while continuously improving our overall security approach.
Responsibilities
- Lead the development and delivery of Sightsavers information security strategy, ensuring it aligns with organisational priorities.
- Oversee key security controls, including patching, vulnerability management and change control processes.
- Identify and assess information security risks across the organisation, supporting teams to implement practical solutions.
- Provide expert advice and guidance on information security controls to protect systems, services and data.
- Act as the organisation’s subject matter expert for audits, reviews and security assurance activities.
- Maintain compliance with key standards and certifications, including Cyber Essentials and PCI-DSS.
- Lead or support the investigation of security incidents, ensuring lessons learned are captured and acted upon.
- Provide guidance on information governance, including data access, classification and retention practices.
- Monitor emerging cyber threats, trends and regulatory requirements, recommending improvements where needed.
- Promote awareness of information security across the organisation, encouraging good practice and secure behaviours.
- Build strong relationships with internal teams, suppliers and external partners to embed security into day-to-day operations.
- Support continuous improvement of security processes, ensuring controls remain effective and fit for purpose.
This is a highly varied and involved role and the above is not an exhaustive list of duties or required professional skills.
Skills and Experience
You will bring strong experience in information security, cyber risk or security governance within a complex organisation, along with a recognised certification such as CISSP, CISM or ISO 27001, or equivalent experience. As the Information Security Manager, you will have a solid understanding of security standards and frameworks, including PCI-DSS, and be confident working with both technical and non-technical stakeholders, translating complex issues into clear, practical guidance. You will be highly organised, with strong attention to detail, and able to manage competing priorities while taking a proactive, solutions-focused approach to risk. Strong communication and relationship-building skills will be key, as you work collaboratively across teams and with external providers, and you will have a genuine interest in continuous improvement and staying up to date with emerging threats and best practice.
Benefits
Sightsavers offers some fantastic benefits. Our comprehensive benefits package includes generous annual leave allowance, pension, season ticket loan, cycle to work scheme, discounted gym memberships and wellness discounts. If you choose to work in or are visiting our collaborative, modern office space, you will find it an easy 20-minute train journey from Brighton or 45 minutes from London.
Jobholder Requirements
Essential
- Strong experience working in information security, cyber risk or security governance within a complex organisation.
- A recognised professional certification such as CISSP, CISM or ISO 27001 (or equivalent experience).
- Solid understanding of security standards and compliance frameworks, including PCI-DSS.
- Experience applying security principles in a practical, real-world environment.
- Confident working with both technical and non-technical stakeholders.
- Strong communication skills, with the ability to translate complex information into clear, practical guidance.
- Highly organised, with strong attention to detail and the ability to manage competing priorities.
- Experience working within an outsourced or multi-supplier environment.
Desirable
- Good technical understanding of IT infrastructure and security technologies.
- Ability to explain technical risks and concepts to a range of audiences across the organisation.
- Experience supporting audits, compliance frameworks or certification processes.
- An interest in staying up to date with emerging threats, trends and best practice in information security.
As an equal opportunity employer, we actively encourage applications from all sections of the community. Sightsavers is a Disability Confident Leader and qualified people with a disability are particularly encouraged to apply.
Information Security Manager employer: Sightsavers, Inc
Sightsavers is an exceptional employer, offering a dynamic work environment where you can make a meaningful impact in the fight against avoidable blindness and the promotion of disability rights. With a strong focus on employee growth, our comprehensive benefits package, including generous leave and wellness discounts, supports a healthy work-life balance, while our modern office in Haywards Heath fosters collaboration and innovation. Join us to be part of a mission-driven team that values diversity and encourages continuous improvement in information security practices.
StudySmarter Expert Advice🤫
We think this is how you could land Information Security Manager
✨Tip Number 1
Network like a pro! Reach out to your connections in the information security field. Attend industry events or webinars, and don’t be shy about asking for informational interviews. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your expertise! Create a personal blog or LinkedIn posts discussing current trends in information security. This not only showcases your knowledge but also helps you connect with others in the field. Plus, it’s a great conversation starter during interviews!
✨Tip Number 3
Prepare for those tricky interview questions! Brush up on common scenarios related to vulnerability management and compliance activities. Practise explaining complex security concepts in simple terms, as you’ll need to communicate effectively with both technical and non-technical stakeholders.
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for passionate individuals who want to make a difference in information security. Tailor your application to highlight how your skills align with our mission at Sightsavers!
We think you need these skills to ace Information Security Manager
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Information Security Manager role. Highlight your experience in information security, cyber risk, and any relevant certifications like CISSP or CISM. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how you can contribute to Sightsavers. Keep it concise but impactful – we love a good story!
Showcase Your Communication Skills:Since you'll be working with both technical and non-technical teams, it's crucial to demonstrate your ability to communicate complex ideas clearly. Use examples from your past experiences to show us how you've done this successfully.
Apply Through Our Website:We encourage you to apply directly through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to keep track of your application status. Plus, we love seeing applications come through our own channels!
How to prepare for a job interview at Sightsavers, Inc
✨Know Your Stuff
Make sure you brush up on your knowledge of information security standards and frameworks like PCI-DSS. Be ready to discuss how you've applied these principles in real-world scenarios, as this will show your practical understanding of the role.
✨Speak Their Language
Since you'll be working with both technical and non-technical stakeholders, practice translating complex security concepts into simple terms. This will demonstrate your communication skills and ability to collaborate effectively across teams.
✨Show Your Organisational Skills
Prepare examples that highlight your strong attention to detail and ability to manage competing priorities. Discuss how you've successfully led projects or initiatives in the past, especially in a complex environment.
✨Stay Current
Keep yourself updated on emerging cyber threats and trends in information security. Bring up recent developments during the interview to show your genuine interest in continuous improvement and proactive approach to risk management.
