Information Security Manager
TwinStream
full-time
Posted on:
Location Type: Remote
Location: United Kingdom
Visit company websiteExplore more
Salary
💰 £70,000 - £80,000 per year
Tech Stack
About the role
- Manage information security incidents and security risks across the organisation
- Own and maintain the Information Security Management System (ISMS), including creating and updating policies, procedures, and guidance
- Ensure adherence to information security policies and standards
- Drive a programme of continuous information security improvement
- Embed and promote a positive security culture across the business
- Ensure compliance with relevant certifications and regulatory requirements, including ISO 27001, Cyber Essentials Plus, UK GDPR/Data Protection Act, and MOD CSM v3 and v4
- Plan and coordinate security audits (internal, external, customer, and penetration testing), managing evidence collection and tracking findings through to resolution
- Provide information security expertise to projects, services, and business initiatives, including developing or contributing to Security Management Plans
- Design and deliver information security training and awareness activities
- Contribute to Business Continuity, Disaster Recovery, and internal audit activities
- Act as the primary point of contact for information security across TwinStream
Requirements
- Proven experience in an Information Security Manager or similar role, including security incident management, risk management, security governance, and providing practical information security guidance
- Experience embedding information security into the design, development, and delivery of software-based solutions, including secure development practices, cloud services, and integrated platforms
- Strong understanding of recognised information security frameworks and certifications, particularly ISO 27001 and Cyber Essentials Plus
- Good knowledge of relevant UK legislation and regulatory requirements
- Comfortable working remotely (within the UK) in a flexible, fast-paced environment
- Strong organisational skills with the ability to manage priorities effectively
- Excellent written and verbal communication skills, with the ability to tailor messaging for different audiences
- Relevant professional certifications such as CISSP (highly desirable), CISM, or ISO 27001 Lead Implementer/Auditor
- Ability and willingness to undergo UK Security Clearance (minimum SC level)
Benefits
- Pension Plan
- Private Medical Healthcare
- Learning and Development
- Flexible Working
- Electric Vehicle Scheme
- Holidays
- Team Events
- Additional Benefits
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
information security incident managementrisk managementsecurity governancesecure development practicescloud servicessecurity auditspenetration testingbusiness continuitydisaster recoverysecurity management plans
Soft Skills
organisational skillscommunication skillsability to manage prioritiesflexibilityability to work remotelytailoring messaging for different audiencespromoting security culturecontinuous improvement mindsettraining and awareness deliverycollaboration
Certifications
CISSPCISMISO 27001 Lead ImplementerISO 27001 Auditor