Information Security Manager

We're seeking an experienced Information Security Manager to lead, develop, and continuously improve our Information Security Management System (ISMS), ensuring compliance with ISO 27001:2022 and protecting the digital infrastructure.

In this strategic yet hands-on role, you'll manage cyber risk, drive security governance, and embed a security-first culture across the organisation. You'll also act as the key contact for information assurance, incident response, supplier security, and regulatory compliance.

What you'll do:

• Own and maintain the ISMS in line with ISO 27001 standards.
• Lead audits, risk assessments, and incident response.
• Oversee supplier assurance and security governance.
• Promote cyber awareness and staff training.
• Support ongoing compliance with GDPR and regulatory frameworks.

• Proven experience managing an enterprise ISMS and ISO 27001 audits.
• Strong knowledge of cyber threats, cloud security (Azure, M365), and GDPR.
• Hands-on experience in vulnerability management, supplier assurance, and incident response.
• Excellent communication and stakeholder management skills.

• Competitive salary with bonus scheme
• Very generous holiday allowance
• Hybrid working - 3 days per week in Reading
• Plus a great range of additional employee benefits