Information Security
4 days ago
Nemean is looking for an Information Security Manager to own and manage our internal
ISMS, compliance and security program while also delivering specialist Information
Security and Assurance consulting to clients (DPO-as-a-Service and vCISO). Ideally with
5+ years in information/cyber security, including 3+ years leading ISMS/risk/compliance
programs and mentoring others. Can demonstrate ownership of an ISO 27001 program;
practical exposure to SOC 2 and Cyber Essentials Plus. Comfortable overseeing
SIEM/logging, EDR/XDR, vulnerability scanning, patch governance, IAM, and secure
configuration. Cloud experience (AWS/Azure/GCP) and light scripting (e.g., Python) are a
plus. Hands-on with GDPR workflows (DPIAs, DSARs, data mapping/ROPA, breach
handling). Clear, confident presenter who can translate risk and controls for executives,
clients, and engineers; strong writing for policies and board materials. Evidence calendars,
runbooks, OKRs/KPIs, and cross-functional steering to drive measurable improvements.
Responsibilities:
ISMS ownership (ISO 27001:2022): Maintain scope, SoA, control design/testing, internal audits, management reviews, KPIs, and continual improvement.
Risk management: Keep the asset inventory and risk register current; drive risk treatment, exceptions, and change control with clear owners and timelines.
Security operations oversight: Govern daily log review for critical systems; run weekly alert/vulnerability triage; coordinate patch cycles; oversee SIEM/EDR/XDR; enforce IAM standards (RBAC, least privilege).
Resilience & recovery: Lead annual BCP/DR/IR exercises (tabletops, restore/failover drills), track corrective actions, and prove RTO/RPO alignment.
Audits & certifications: Orchestrate ISO 27001 certification/surveillance, SOC 2 readiness/evidence, and Cyber Essentials Plus; manage evidence calendars and auditor interactions.
Policies & awareness: Own policy lifecycle; deliver bi-annual awareness; embed security into onboarding/offboarding; run periodic access reviews.
Third-party risk: Chair vendor reviews, perform due diligence for new suppliers, and maintain a living vendor risk matrix.
People leadership: Coach and develop the Information Security Team; set goals, plan workload, and raise the bar on operational excellence.
DPO-as-a-Service: Run DPIAs, maintain/advise on ROPA, oversee DSARs, and act as the liaison for regulator communications when needed.
vCISO services: Provide threat-intel updates, board-level briefings, security roadmaps, and control-gap remediation plans for select clients.
Client assurance: Complete security questionnaires, policy/evidence reviews, and guide clients through BCP/DR/IR tests and access reviews.
Incident support: Be available for on-call advisory during client incidents; coordinate investigation, containment, and lessons learned.
Desirable Certifications
ISACA: CISM, CRISC, CISA
(ISC)2: CISSP (or CCSP for cloud)
IAPP: CIPP/E, CIPM (for DPO duties)
ISO 27001: Lead Implementer and/or Lead Auditor
Salary & Benefits:
Base salary: £65,000 pa
Bonus: Bonus exclusive of the above base salary.
Location: London, flexible working available.
-
Security Manager
4 days ago
London, Greater London, United Kingdom Information Security Solutions Full time £120,000 - £160,000 per yearWe are searching for candidates that match the role below:Title………………………Security ManagerCompany………………Financial ServicesLocation………………..LondonWorking pattern……Hybrid – 2 days per week in the officeSalary……………………£120,000 - £160,000The RoleWe are seeking a Security Manager to lead security...
-
Information Security Analyst
4 days ago
London, Greater London, United Kingdom Robert Walters Full timeMy client, an International bank, based in London, is looking for an Information Security Analyst to join it's team. Three MUST for this role: 1) Three days per week in the office 2) They dont offer sponsorship 3) You must come from banking or financial services background 4) Must have at least 2/3 years experience in your current firmAbout The Information...
-
Information Security Analyst
6 days ago
London, Greater London, United Kingdom Oliver Bernard Full time £70,000 per yearInformation Security Analyst - FinTech - £70KOur client is a growing London SaaS company, working with clients across tech, trading, pharma and ecommerce around the world.Offering hybrid working, they're looking for an experienced Information Security / Cyber Security Analyst / Engineer to join them.You'll work directly with the CTO, CRO and IT teams to...
-
Information Security Architect
2 days ago
London, Greater London, United Kingdom Clifford Chance Full time £1,000,000 - £1,800,000 per yearWho we areWe are one of the largest international law firms in the world. With over 30 offices across the globe, we strive to exceed the expectations of our clients, providing them with the highest-quality advice and legal insight, which combines the firm's global standards with in-depth local expertise.Our firm, work and people span jurisdictions, cultures,...
-
Head of Information Security
2 weeks ago
London, Greater London, United Kingdom Clayton Davies Full time £100,000 - £150,000 per yearHead of Information SecurityBirmingham, Reading or LondonCompetitive SalaryOur client is a leading organisation in the financial services industry, committed to innovation, integrity, and excellence in everything we do. With a growing national presence and an unwavering focus on protecting our clients' trust, they are seeking an exceptional Head of...
-
Information Security Manager
1 week ago
London, Greater London, United Kingdom Academia Ltd ta Smartdesc Full time £70,000 - £80,000 per yearInformation Security ManagerBased: Field-based, predominantly in the London area Type: Full-time Salary: £70-80k Eligibility: You must be eligible to work in the UKAs the Smartdesc Information Security Manager, you will be working with the Information Security team and technical delivery team to deliver security solutions to our customers.You will work with...
-
Information Security Analyst
5 days ago
London, Greater London, United Kingdom Lancashire Holdings Limited Full time £60,000 - £120,000 per yearDescriptionInformation security is an essential function at Lancashire and so is committed to its continuous improvement; the addition of this role is an important element in achieving its security objectives during Lancashire's time of digital transformation and growth.Reporting to the Information Security Manager, the post holder will be responsible for...
-
Information Security Architect
4 days ago
London, Greater London, United Kingdom AJ Bell Full time £60,000 - £120,000 per yearJob Description To support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for facilitating the secure delivery of AJ Bell's technology and business change. The Information Security Architect will play a...
-
Information Security Architect
2 weeks ago
London, Greater London, United Kingdom AJ Bell Full time £60,000 - £100,000 per yearJob DescriptionTo support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for facilitating the secure delivery of AJ Bell's technology and business change. The Information Security Architect will play a lead...
-
Information Security Analyst
6 days ago
London, Greater London, United Kingdom Squarepoint Capital Full time £104,000 - £128,000 per yearPosition Overview:Squarepoint is seeking an Information Security Analyst to join the Security Operations team. The Information security Analyst provides first line of support for security inquires, manages vulnerability assessments, assesses third-party vendors and software requests, and investigates and responds to security alerts. The ideal candidate has a...
