Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Definely

Senior Information Security Officer

Definely

. Own and evolve Definely’s Information Security Management System (ISMS).

Posted 5/7/2026full-timeLondon • 🇬🇧 United KingdomSeniorWebsite

Tech Stack

Tools & technologies
AWSAzureCloudSDLC

About the role

Key responsibilities & impact
  • Own and evolve Definely’s Information Security Management System (ISMS).
  • Lead ISO 27001 and SOC 2 Type II audits, ensuring controls remain effective.
  • Drive readiness for ISO/IEC 42001 AI certification
  • Manage customer due diligence requests and run Definely’s SafeBase-powered Trust Center; streamline customer security questionnaires, DPAs, and RFP security sections.
  • Embed secure SDLC practices across product teams, from design to release.
  • Perform threat modelling, define non-functional security requirements, and review designs for security impact.
  • Guide security considerations in our AI/LLM-enabled products.
  • Own the company-wide incident response plan and lead tabletop exercises.
  • Perform ongoing risk assessments, vendor security reviews, and DPIAs.
  • Ensure strong access management, secrets management, and cloud security hygiene.
  • Provide day-to-day IT support for employees, including device management, troubleshooting, and access provisioning.
  • Support onboarding and offboarding processes to ensure secure and efficient setup of accounts, devices, and permissions.
  • Help scale internal IT processes and tooling as the company grows.
  • Deliver security training and awareness across the company.
  • Communicate risks and incidents clearly to technical and non-technical stakeholders.

Requirements

What you’ll need
  • Proven experience in information security within a SaaS or product led environment
  • Strong track record of delivering ISO 27001, SOC 2, or similar certifications, with interest in ISO/IEC 42001 AI standards
  • Experience with compliance tooling such as Drata and working with ISO auditors, ideally in the UK
  • Solid understanding of GDPR and data protection best practices
  • Deep knowledge of secure SDLC, threat modelling, and securing AI and LLM based systems
  • Strong cloud security expertise across Azure or AWS, including access control, secrets management, and incident response
  • Experience running IT operations in a scaling business, including device management, SaaS tooling, and identity systems such as SSO and IAM
  • Excellent communication skills, with the ability to work cross functionally and manage customer security and due diligence processes
  • Relevant certifications such as CISSP, CISM, CCSK, or ISO 27001 Lead Auditor, and a degree in a related field

Benefits

Comp & perks
  • Competitive salary & annual bonus
  • Equity in Definely
  • Quarterly team socials + holiday parties
  • Hybrid working + 1 month “work from anywhere”
  • 25 days holiday + bank holidays
  • Take your birthday off
  • £750 annual learning & development budget
  • Private healthcare (incl. dental & optical)
  • Enhanced parental leave + Workplace Nursery salary sacrifice scheme
  • Additional perks: Cycle to Work
  • Top-quality equipment

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
ISO 27001SOC 2 Type IIISO/IEC 42001secure SDLCthreat modellingcloud securityGDPRaccess managementsecrets managementrisk assessments
Soft Skills
communicationcross-functional collaborationincident response leadershipcustomer managementtraining and awareness delivery
Certifications
CISSPCISMCCSKISO 27001 Lead Auditor