At a Glance
- Tasks: Lead our information security strategy and protect vital data from cyber threats.
- Company: Join Sightsavers, a global leader in promoting rights and eliminating avoidable blindness.
- Benefits: Enjoy generous leave, pension, wellness discounts, and a modern office environment.
- Other info: Work remotely with occasional office visits; great career growth opportunities await!
- Why this job: Make a real impact in a role that combines tech with social good.
- Qualifications: Experience in information security and relevant certifications like CISSP or CISM.
The predicted salary is between 45405 - 53418 £ per year.
Sightsavers implements projects in over 30 countries in Africa and South Asia working to eliminate avoidable blindness and promote the rights of people with disabilities.
In this role, you will lead Sightsavers information security function, ensuring our systems, services and data are protected from evolving cyber threats. You will drive the development and delivery of our information security strategy, working closely with teams across the organisation to strengthen controls and embed secure ways of working. This will include overseeing key areas such as vulnerability management, patching and compliance activities, as well as identifying and assessing risks and supporting colleagues to put effective, practical safeguards in place. Acting as the organisation’s subject matter expert, you will play a central role in managing audits, supporting incident response and ensuring we meet key security standards, while continuously improving our overall security approach.
Responsibilities
- Lead the development and delivery of Sightsavers information security strategy, ensuring it aligns with organisational priorities
- Oversee key security controls, including patching, vulnerability management and change control processes
- Identify and assess information security risks across the organisation, supporting teams to implement practical solutions
- Provide expert advice and guidance on information security controls to protect systems, services and data
- Act as the organisation’s subject matter expert for audits, reviews and security assurance activities
- Maintain compliance with key standards and certifications, including Cyber Essentials and PCI-DSS
- Lead or support the investigation of security incidents, ensuring lessons learned are captured and acted upon
- Provide guidance on information governance, including data access, classification and retention practices
- Monitor emerging cyber threats, trends and regulatory requirements, recommending improvements where needed
- Promote awareness of information security across the organisation, encouraging good practice and secure behaviours
- Build strong relationships with internal teams, suppliers and external partners to embed security into day-to-day operations
- Support continuous improvement of security processes, ensuring controls remain effective and fit for purpose
This is a highly varied and involved role and the above is not an exhaustive list of duties or required professional skills.
Skills and Experience
You will bring strong experience in information security, cyber risk or security governance within a complex organisation, along with a recognised certification such as CISSP, CISM or ISO 27001, or equivalent experience. As the Information Security Manager, you will have a solid understanding of security standards and frameworks, including PCI-DSS, and be confident working with both technical and non-technical stakeholders, translating complex issues into clear, practical guidance. You will be highly organised, with strong attention to detail, and able to manage competing priorities while taking a proactive, solutions-focused approach to risk. Strong communication and relationship-building skills will be key, as you work collaboratively across teams and with external providers, and you will have a genuine interest in continuous improvement and staying up to date with emerging threats and best practice.
Benefits
Sightsavers offers some fantastic benefits. Our comprehensive benefits package includes generous annual leave allowance, pension, season ticket loan, cycle to work scheme, discounted gym memberships and wellness discounts. If you choose to work in or are visiting our collaborative, modern office space, you will find it an easy 20-minute train journey from Brighton or 45 minutes from London.
Jobholder Requirements
Essential
- Strong experience working in information security, cyber risk or security governance within a complex organisation
- A recognised professional certification such as CISSP, CISM or ISO 27001 (or equivalent experience)
- Solid understanding of security standards and compliance frameworks, including PCI-DSS
- Experience applying security principles in a practical, real-world environment
- Confident working with both technical and non-technical stakeholders
- Strong communication skills, with the ability to translate complex information into clear, practical guidance
- Highly organised, with strong attention to detail and the ability to manage competing priorities
- Experience working within an outsourced or multi-supplier environment
Desirable
- Good technical understanding of IT infrastructure and security technologies
- Ability to explain technical risks and concepts to a range of audiences across the organisation
- Experience supporting audits, compliance frameworks or certification processes
- An interest in staying up to date with emerging threats, trends and best practice in information security
As an equal opportunity employer, we actively encourage applications from all sections of the community. Sightsavers is a Disability Confident Leader and qualified people with a disability are particularly encouraged to apply.
Remote Information Security Manager — Strategy & Risk employer: Sightsavers, Inc
Sightsavers is an exceptional employer, offering a dynamic work environment that prioritises employee well-being and professional growth. With a comprehensive benefits package, including generous annual leave and wellness discounts, employees enjoy a supportive culture that fosters collaboration and innovation. The opportunity to work remotely while occasionally visiting our modern Haywards Heath office allows for a flexible work-life balance, making Sightsavers an ideal choice for those seeking meaningful and rewarding employment in the field of information security.
StudySmarter Expert Advice🤫
We think this is how you could land Remote Information Security Manager — Strategy & Risk
✨Tip Number 1
Network like a pro! Reach out to folks in the information security field on LinkedIn or at industry events. Building connections can lead to job opportunities that aren't even advertised yet.
✨Tip Number 2
Prepare for those interviews! Research Sightsavers and understand their mission. Be ready to discuss how your experience aligns with their goals, especially around information security strategy and risk management.
✨Tip Number 3
Show off your expertise! Bring examples of past projects where you’ve successfully managed security risks or led compliance initiatives. This will demonstrate your hands-on experience and problem-solving skills.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining the team at Sightsavers.
We think you need these skills to ace Remote Information Security Manager — Strategy & Risk
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Information Security Manager role. Highlight your experience in information security, cyber risk, and any relevant certifications like CISSP or CISM. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how you can contribute to Sightsavers. Be sure to mention specific experiences that relate to the responsibilities outlined in the job description.
Showcase Your Communication Skills:Since this role involves working with both technical and non-technical stakeholders, make sure to demonstrate your communication skills in your application. Use clear language and avoid jargon where possible, showing us you can translate complex issues into practical guidance.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you don’t miss out on any important updates. Plus, it shows you’re keen on joining our team!
How to prepare for a job interview at Sightsavers, Inc
✨Know Your Stuff
Make sure you brush up on your knowledge of information security standards and frameworks like PCI-DSS. Be ready to discuss how you've applied these principles in real-world scenarios, as this will show your practical understanding of the role.
✨Speak Their Language
Since you'll be working with both technical and non-technical stakeholders, practice explaining complex security concepts in simple terms. This will demonstrate your communication skills and ability to bridge gaps between different teams.
✨Show Your Proactive Side
Prepare examples of how you've identified and mitigated risks in previous roles. Highlight your proactive approach to security and continuous improvement, as this aligns perfectly with what Sightsavers is looking for.
✨Build Relationships
Think about how you've successfully collaborated with internal teams and external partners in the past. Be ready to share specific instances where your relationship-building skills have led to improved security practices or outcomes.
