Senior Information Security Manager

Senior Information Security Manager, LondonAbout NscaleNscale is the GPU cloud engineered for AI. We provide cost‑effective, high‑performance infrastructure for AI start‑ups and large enterprise customers. Nscale enables AI‑focused companies to achieve superior results by reducing the complexity of AI development. Our GPU cloud bolsters technical capabilities and directly supports strategic business outcomes, including cost management, rapid innovation, and environmental responsibility.We thrive on a culture of relentless innovation, ownership, and accountability, where every team member takes pride in their work and drives it with excellence and urgency. As an Nscaler, you’ll build trust through openness and transparency, where everyone is inspired to do their best work. If you join our team, you’ll be contributing to building the technology that powers the future.Role OverviewWe are seeking a Senior Information Security Manager to work closely with the Head of Information Security in building and managing Nscale’s end‑to‑end security framework across physical, technical, and organisational domains. You’ll be hands‑on, execution‑focused, and comfortable working in a complex environment that spans hyperscale GPU clusters, critical infrastructure, and compliance programmes (SOC 2 Type II, ISO 27001/17/18, Cyber Essentials Plus, ISO 22301, and ISO 22237). This role will directly support ongoing certification, audit readiness, and incident response initiatives while driving operational maturity across all Nscale sites and systems.This role requires UK government security clearance up to DV.What you’ll doGovernance, Risk & ComplianceSupport ongoing delivery of ISO 27001, ISO 27017/27018, SOC 2 Type II, Cyber Essentials Plus, and ISO 22301 frameworks.Maintain the Information Security Management System (ISMS), risk register, and control evidence for internal and external audits.Support third‑party risk management (TPRM) ensuring supplier compliance and onboarding reviews.Develop and track KPIs/KRIs for security operations and compliance health.Operational SecurityOversee vulnerability management, EDR posture, and security incident workflows in partnership with or MSSPs.Support incident detection, triage, investigation, and root‑cause analysis.Own operational runbooks for containment, eradication, and recovery procedures.Review access control lists, privileged‑user logs, and infrastructure security baselines.Maintain asset inventory, patch cadence, and configuration compliance (servers, workstations, and Kubernetes workloads).Physical & Data Centre SecuritySupport the physical security programme at all Nscale data centres, ensuring alignment with ISO 27001 Annex A.11 and ISO 22237.Maintain visitor management and access audit trails, assisting with incident reviews and compliance documentation.Awareness & CultureSupport security awareness and phishing simulation programmes.Develop clear communications and training materials to reinforce security accountability across teams.Continuous ImprovementContribute to architecture reviews, change‑control boards, and project assessments.Identify and implement automation opportunities to reduce manual compliance and reporting overhead.Track and report on control effectiveness, audit findings, and remediation progress to senior leadership.About you5+ years in information or physical security management within a data centre, cloud, or MSP environment.Deep familiarity with ISO 27001, SOC 2, NIST CSF, and Cyber Essentials Plus frameworks.Experience leading or supporting audits and external assessments.Strong understanding of incident response, vulnerability management, and access control processes.Excellent documentation, communication, and stakeholder management skills.Hands‑on with GRC tooling.Experience with GPU/HPC or cloud infrastructure security.Familiarity with ISO 22237 (data‑centre design & operations).Knowledge of Kubernetes, container security, and hybrid cloud architectures.Familiarity with Darktrace, Tenable, Checkpoint Harmony, and Exabeam SIEM.Security certifications (CISSP, CISM, ISO 27001 LA/LI, CompTIA Sec+, or similar).What we can offer youAt Nscale, you’ll find a collaborative, supportive, and innovative environment where your contributions spark real impact. We’re building something extraordinary, and we want you at the core.Highly competitive package (base + equity) with reviews every 12 months.Join the fastest‑growing tech startup, your chance to push boundaries, collaborate with brilliant minds, and make your mark on cutting‑edge AI.Expect a dynamic progression plan tailored to your ambitions. Grow by trying new things, leading, challenging the status quo, and owning your impact, always with our full support.Human‑First Flexibility: We treat you as humans first. Our flexible workplace trusts Nscalers to deliver, giving you autonomy to shape your day around life’s moments.Join our thriving remote‑first team. Geography is no barrier to impact or connection. We build seamless virtual collaboration, empowering you wherever you work. #J-18808-Ljbffr