Envitia

Security Manager

Envitia

full-time

Posted on:

Location Type: Hybrid

Location: HorshamUnited Kingdom

Visit company website

Explore more

AI Apply
Apply

Tech Stack

CloudReact

About the role

  • Lead the implementation and maintenance of key frameworks (e.g., ISO 27001, Cyber Essentials Plus, and defence-specific standards like DCC, NIST or JSP 440)
  • Develop and enforce internal security policies that protect both our company data and our clients' intellectual property
  • Conduct regular gap analyses and risk assessments to identify vulnerabilities in our digital workflows and supply chain
  • Act as the primary point of contact for defence-related security audits and government vetting processes
  • Manage the "Security Incident Response Plan," ensuring the team knows exactly how to react to potential breaches or data leaks and lead any incident response activities
  • Run security awareness sessions for our teams to ensure "Security by Design" is part of every project we deliver
  • Oversee the selection and management of security tools (EDR, SIEM, Encryption) used across our remote or hybrid workforce
  • Support and collaborate with the Quality Manager and Head of Operations in maintaining ISO standards and other required certifications
  • Support the business in pre-sales activities, specifically relating to the security aspects of a tender / project

Requirements

  • Leading or owning an Information Security Management within a consultancy or defence-adjacent firm
  • Implementing, maintaining, and evidencing compliance against recognised security frameworks such as ISO 27001 and Cyber Essentials Plus, with exposure to defence-specific standards (e.g. DCC, NIST, JSP 440)
  • Acting as a primary point of contact for external audits, security assessments, and government or customer assurance activities
  • Conducting risk assessments, gap analyses, and security reviews across systems, processes, and supply chains
  • Working closely with software engineers, cloud architects, and technical teams to embed security controls into real-world delivery
  • Developing and enforcing security policies, procedures, and incident response plans
  • Supporting or leading security incident response, including investigation, containment, and reporting
Benefits
  • 25 days plus your birthday off, with the ability to buy or sell up to five additional days
  • Comprehensive coverage with additional options for family members
  • Ongoing learning opportunities to help you advance your career
  • Support for gym memberships or fitness-related expenses
  • Extensive life insurance coverage for peace of mind
  • Competitive options to help you plan for a secure financial future
  • Discounts on a wide range of products and services
  • Designed to support work-life balance and personal commitments
  • Recognition initiatives to celebrate your contributions and achievements
  • Opportunities to support meaningful causes through company-sponsored programs
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
ISO 27001Cyber Essentials PlusDCCNISTJSP 440risk assessmentsgap analysessecurity policiesincident responsesecurity reviews
Soft Skills
leadershipcommunicationcollaborationorganizational skillsproblem-solvingattention to detailsecurity awareness trainingproject management