At a Glance
- Tasks: Lead security governance and shape the organisation's security posture.
- Company: Dynamic London-based financial services firm with a start-up vibe.
- Benefits: Competitive salary, career growth, and a chance to make a real impact.
- Other info: Opportunity to work with cloud security and engage with senior stakeholders.
- Why this job: Be the authority on security and drive change in a fast-paced environment.
- Qualifications: Strong GRC background and knowledge of ISO 27001 or similar frameworks.
The predicted salary is between 70000 - 90000 € per year.
We’re partnered exclusively with one of our London based financial services clients in their search for an Information Security Manager to take ownership of their security governance and help mature the organisation’s security posture. This is a governance-first role. You’ll lead policies, frameworks, risk management and compliance, while working closely with engineering and architecture teams on cloud and API security. You won’t be hands-on-keyboard day to day, but you will be the authority shaping how security works across their business.
They are looking for someone familiar with working in a start-up environment where they are used to taking end to end ownership of the full security function in the business.
What you’ll be doing:
- Owning and evolving the information security policy and risk framework
- Leading certifications and assurance (ISO 27001, SOC 2, Cyber Essentials+, GDPR, FCA/DORA as relevant)
- Maintaining the risk register and reporting to senior leadership
- Providing cloud security governance across AWS, Azure or GCP
- Driving security awareness and acting as a key stakeholder during incidents
What we’re looking for:
- Strong GRC background with real-world delivery experience
- Deep knowledge of ISO 27001, NIST CSF or similar frameworks
- Solid understanding of cloud security concepts
- Confidence engaging senior stakeholders and translating risk into business language
Nice-to-haves include security certifications and exposure to AI/LLM security risks. If this looks like an interesting role and potentially the next step in your career, send across your CV or contact Adam Whitehurst at Trust in Soda for more info.
Information Security Manager in London employer: Trust In SODA
Join a dynamic financial services firm in London that prioritises security governance and offers a collaborative work culture. As an Information Security Manager, you'll have the opportunity to shape the organisation's security posture while enjoying a supportive environment that fosters professional growth and innovation. With a focus on cloud security and compliance, this role provides a unique chance to lead impactful initiatives in a start-up atmosphere, making it an excellent choice for those seeking meaningful and rewarding employment.
StudySmarter Expert Advice🤫
We think this is how you could land Information Security Manager in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those who work in financial services or security. A friendly chat can lead to insider info about job openings and even referrals.
✨Tip Number 2
Prepare for interviews by brushing up on your GRC knowledge. Be ready to discuss how you've implemented frameworks like ISO 27001 in past roles. We want you to show off your expertise and confidence!
✨Tip Number 3
Don’t just apply anywhere; focus on companies that align with your values and career goals. Check out our website for tailored opportunities that match your skills in information security governance.
✨Tip Number 4
Follow up after interviews! A quick thank-you email can keep you top of mind. Mention something specific from your conversation to show your genuine interest in the role and the company.
We think you need these skills to ace Information Security Manager in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the role of Information Security Manager. Highlight your GRC experience and any relevant certifications, like ISO 27001 or Cyber Essentials+, to show we’re on the same page.
Showcase Your Achievements:Don’t just list your responsibilities; share specific examples of how you’ve improved security governance or risk management in previous roles. We love seeing real-world delivery experience!
Engage with the Job Description:Use the language from the job description in your application. If they mention cloud security or stakeholder engagement, make sure to reflect that in your CV and cover letter to resonate with us.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any updates!
How to prepare for a job interview at Trust In SODA
✨Know Your Frameworks
Make sure you’re well-versed in ISO 27001, NIST CSF, and any other relevant frameworks. Be ready to discuss how you've applied these in real-world scenarios, as this will show your depth of knowledge and experience.
✨Speak Their Language
When engaging with senior stakeholders, practice translating technical risks into business language. This will demonstrate your ability to bridge the gap between security and business needs, which is crucial for this role.
✨Showcase Your Governance Skills
Prepare examples of how you've owned and evolved security policies and risk frameworks in previous roles. Highlight your experience with certifications like ISO 27001 and how you’ve led assurance processes.
✨Be Ready for Cloud Security Questions
Brush up on cloud security concepts, especially if you have experience with AWS, Azure, or GCP. Be prepared to discuss how you would provide governance in these environments and any challenges you’ve faced.
