Information Security Manager

We are partnering with a leading and ambitious organisation within the regulated financial services sector to appoint an ambitious and driven Information Security Manager. This is a pivotal, hands-on leadership role responsible for safeguarding the confidentiality, integrity and availability of systems and data, while evolving the organisation's security posture in line with emerging threats and regulatory requirements.

This opportunity is ideal for a pragmatic security professional looking to take who combines strategic thinking with a hands-on approach and thrives in a fast-paced, regulated environment. It would also suit someone looking to take their nextnstep into a Security Manager position.

What you'll be doing

• Implement and mature the organisation's information security strategy and controls.
• Ensure compliance with frameworks and regulations including Cyber Essentials, ISO27001, GDPR, NIST CSF and DORA.
• Monitor regulatory developments and provide clear guidance to senior stakeholders.
• Develop, maintain and enforce security policies, standards and procedures.
• Conduct regular security risk assessments and audits, implementing effective mitigation strategies.
• Lead and enhance third-party risk management, including vendor assessments and ongoing reviews.
• Support and lead security incident response activities (investigation, containment, root cause analysis and reporting).
• Deliver security awareness initiatives, training programmes and phishing simulations to strengthen security culture.
• Provide expert security guidance across business projects and change initiatives.
• Engage confidently with engineers, product teams, senior leadership, auditors and regulators.
• Ensure adherence to relevant regulatory frameworks (including FCA requirements and Lloyd's byelaws where applicable).

• CISSP or CISM (or equivalent) certification.
• Strong experience with Cyber Essentials, GDPR and either DORA, ISO27001 or NIST CSF.
• Proven experience in leading and implementing security initiatives'/projects throughout an organistation
• Ability to manage multiple security related projects with varying priorities simaltaneously
• Ability to engage, in?uence, and build trusted relationships with internal and external stakeholders in matters relating to cybersecurity
• Experience engaging with third parties, auditors and regulators.
• Excellent communication skills, able to translate technical risk into clear business impact.
• Hands-on, solutions-focused mindset with the ability to operate autonomously.
• Background within financial services or another regulated industry.

InterQuest Group is acting as an employment agency for this vacancy. InterQuest Group is an equal opportunities employer and we welcome applications from all suitably qualified persons regardless of age, disability, gender, religion/belief, race, marriage, civil partnership, pregnancy, maternity, sex or sexual orientation. Please make us aware if you require any reasonable adjustments throughout the recruitment process.