Accessibility
Home
Jobs
Upload CV
Find Talent
Careers
Applications have closed
Information Security Governance Manager
We are partnering with an award-winning UK-based business seeking to hire an Information Security Governance Manager. This role is pivotal in ensuring compliance with regulatory standards such as ISO 27001, PCI DSS, and others. The successful candidate will take ownership of all aspects of information security risk, compliance, and governance, implementing industry standards and best practices as part of an integrated approach to security across the organisation. This is an outstanding opportunity to join a thriving and progressive company where Security & Trust are key to our strategic growth.
Responsibilities:
- Manage the Security Governance Team: Lead the team with a hands-on approach to meet business requirements and continual improvement goals.
- Policy and Compliance Management: Define, monitor, and maintain the organisation’s information security policies, procedures, and standards. Ensure compliance with regulatory, industry best practices, and stakeholder requirements.
- Risk Management and Assessments: Identify, assess, and mitigate information security risks through regular security assessments on third parties, information assets, projects, and sites.
- Incident Response and Oversight: Oversee the incident response process, including identification, notification, investigation, and reporting. Contribute to the Information Security Awareness Programme to promote a security culture within the organisation.
- Performance Tracking and Vendor Security: Define and track key performance indicators (KPIs) and key risk indicators (KRIs) to measure the effectiveness of the information security programme. Develop and maintain vendor security assessments and due diligence processes.
Qualifications:
- Strong understanding of information security best practices, regulatory requirements, and industry standards (ISO 27001, PCI-DSS, SOX).
- Knowledge of risk management, incident response, and compliance frameworks.
- Experience working with globally distributed cross-functional teams and managing security initiatives
- Professional certifications such as CISSP, CISM, or CISA are highly desirable.
If you would like any further details please contact James Lawrence – jol@barclaysimpson.com
We seek individuals from a diverse talent pool and encourage applicants from underrepresented groups to apply to our vacancies. Our commitment to fair recruitment processes means that we welcome applicants from all backgrounds, regardless of their lived experience or personal characteristics. We also invite applicants who meet most of the listed requirements, even if not all, to apply. If you require any adjustments to the application process, please let us know.
Barclay Simpson acts as an Employment Agency for permanent positions and an Employment Business for temporary/contract engagements.
