AI Information Security Specialist

If you’re someone who enjoys solving complex problems and cares about building things that last, Standard Life could be the place for you. We’re looking for an AI Information Security Specialist to join our IT Risk, Data and AI Governance team.

Job Type: Full time

Location: Hybrid working, with visits to the office approx 1-2 times per week, based in either Birmingham, Edinburgh, Telford, London

Flexible working: All roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process.

Closing Date: 22/06/2026

Salary and benefits: £60,000 - £80,000 plus an indicative bonus range of 16-32%, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more.

Who are we? We’re Standard Life, a retirement specialist focused entirely on retirement savings and income. We champion the belief that everyone’s journey to and through retirement can be better, and for more than 200 years, we’ve been helping our customers plan and prepare for their financial futures.

The role will focus on ensuring information security risks are appropriately identified, assessed and managed as AI use cases are designed, approved and operated under the AI Governance Framework. Working closely with technology, architecture, cyber security, data, risk and business teams, the role will provide expert advice and challenge on information security risks associated with AI, including model security, data protection controls, access management, resilience and third-party risk.

Key responsibilities will include:

• Advising on information security considerations for AI use cases
• Supporting security risk assessments and control design
• Contributing to AI use case reviews through the AI Review Board and other governance forums
• Maintaining AI-related information security governance artefacts, registers and guidance
• Supporting the development of AI-specific information security guidance and awareness

What are we looking for?

• Experience working in information security, cyber risk, technology risk or security governance roles within a regulated environment.
• Familiarity with relevant frameworks or standards such as ISO 27001, ISO 42001, NIST Cyber Security Framework, or NIST AI Risk Management Framework.
• Strong understanding of information security concepts and controls, such as access management, data security, secure system design, vulnerability management, resilience, and third-party security risk.
• Experience advising on security risks in technology change initiatives, digital delivery or complex systems, with the ability to provide clear, practical guidance.
• Ability to assess, challenge and document security risks and controls in a structured and proportionate way, particularly in evolving or ambiguous technical contexts.

Desirable skills and experience:

• Experience considering information security risks specific to artificial intelligence, automation or advanced analytics.
• Strong stakeholder engagement skills, including working with technology, architecture, cyber security and business teams.
• Experience supporting governance forums, review boards or senior stakeholders in a second line or advisory capacity.
• Experience working within financial services or another highly regulated sector.

We want to hire the whole version of you. We are committed to ensuring that everyone feels accepted and welcome applicants from all backgrounds. If your experience looks different from what we’ve advertised and you believe that you can bring value to the role, we’d love to hear from you.

If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.