Cyber Security Manager in London

At WHSmith our people are at the heart of everything we do. They are the ones that go the extra mile for our customers. The ones that enable our growth.

The Cyber Security Manager is responsible for developing, implementing, and maintaining WHSmith’s cybersecurity strategy to protect systems, networks, and data from cyber threats. This role ensures compliance with security standards, leads incident response efforts, and manages security technologies and teams.

What you will be doing:

• Develop and implement the organization’s cybersecurity strategy and roadmap.
• Establish and enforce security policies, standards, and procedures.
• Ensure compliance with relevant regulations (e.g., GDPR, ISO 27001, NIST).
• Conduct regular risk assessments and vulnerability management.
• Oversee security monitoring, threat detection, and incident response.
• Lead investigations into security breaches and implement corrective actions.
• Ensure proper configuration and management of security tools (SIEM, firewalls, EDR, IDS/IPS).
• Identify, assess, and mitigate cybersecurity risks.
• Conduct internal and external security audits.
• Work with stakeholders to ensure compliance with legal and regulatory requirements.
• Maintain documentation and reporting for audits and risk management.
• Lead, mentor, and develop the cybersecurity team.
• Manage third-party vendors and security service providers.
• Promote a culture of security awareness across the organization.
• Develop and deliver cybersecurity awareness programs.
• Conduct phishing simulations and training exercises.
• Ensure employees follow best security practices.

What we are looking for:

• Experience in cybersecurity or information security roles.
• Strong leadership and decision-making abilities.
• Excellent communication and stakeholder management.
• Analytical mindset with problem-solving skills.
• Ability to work under pressure during security incidents.
• Familiarity with frameworks like ISO 27001, NIST, CIS Controls.
• Understanding of vulnerability management and penetration testing.

How we reward our teams:

• Hybrid Working Model from home and in the office.
• 4pm Friday Finish.
• Flexible Working.
• 25 Days holiday, plus your Birthday off, plus Bank Holidays with an opportunity to buy extra days holiday.
• Family Friendly Leave.
• Company Pension scheme.
• Sharesave Scheme.
• Annual Bonus based on company and personal performance.
• Competitive Salary and Car Allowance.
• Private Medical.
• Staff Discount Card for stores and online.
• Cycle to Work Scheme.

About us:

Celebrating over 230 years, we’re proud to have grown and evolved into a globally recognised brand present in over 30 countries around the world, and we’re proud to be that air of familiarity people love and trust on their journey, both in life and through life. As a diverse group of over 5,000 colleagues, we are all on the same journey to a better business through our commitments to our planet, people and the communities we serve.

Our UK Travel office is based in a buzzing part of central London close to Liverpool Street Station. We are an ambitious team that thrives on pace, collaboration and innovation resulting in a real entrepreneurial culture. It’s perfect for people who are happy to use their initiative and embrace life outside their comfort zone.

At WHSmith, we’re all about creating an inclusive and welcoming workplace where everyone can be themselves and do their best. No matter your background, age, disability, gender, gender expression, gender identity, race or ethnicity, marital status, religion, sex, sexual orientation or anything else that makes you, you—you’re welcome here. We’re also open to flexible working where possible, so if that’s something you need, let’s chat. And if you need any adjustments during the selection process, just let our Talent Acquisition team know—we’re happy to help!