IT Security Manager

We're supporting a fast-growing technology business in the search for an IT Security Manager to lead and develop its group-wide security function. This is a newly created position offering the opportunity to build and shape security practices from the ground up within a scaling international organisation.

In this position, you'll work closely with Engineering, SRE, Product, Compliance and Customer Care teams, taking ownership of security strategy, operational security delivery, risk management, and continuous improvement across the business.

This role would suit a proactive and technically hands-on security professional who enjoys operating across both strategic and operational environments.

As IT Security Manager, you will take overall responsibility for identifying, prioritising and reducing security risk across infrastructure, applications, SaaS platforms, operational processes and user access management. You'll act as the key point of contact for all security-related matters internally and externally, including audits, client due diligence requests and third-party security engagements.

Day to day:

• Leading and developing the organisation's security function and roadmap
• Managing and prioritising security risks, remediation activity and ongoing improvements
• Working collaboratively with technical and operational teams to implement practical security controls
• Owning Identity & Access Management processes across cloud and SaaS environments
• Improving governance around authentication, permissions, privileged access and device security
• Supporting the security of APIs, applications and external platform access
• Managing relationships with third-party security providers and ensuring recommendations are delivered effectively
• Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST
• Acting as an escalation point for significant security incidents when required
• Driving security awareness and embedding best practice across the wider organisation
• Supporting alignment of security standards and processes across multiple business units

• Strong experience within Cloud Security, ideally Google Cloud Platform (GCP)
• Expertise across IAM, SSO, SaaS security and API security
• Experience working closely with engineering and operational teams
• Hands-on scripting or automation experience using Python, Bash or similar tools
• Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST
• Knowledge of security methodologies such as MITRE ATT&CK
• Excellent communication and stakeholder management skills
• Experience operating within high-growth or evolving organisations
• French language skills would be advantageous

This is an excellent opportunity to join a growing business where you'll have genuine ownership, influence and the ability to shape the future direction of security across the organisation!

Both Leo Technology and the companies we partner with are incredibly passionate about building environments where people from all backgrounds and walks of life are embraced. Our mission is to welcome everyone and create inclusive teams. We celebrate difference and encourage people from all backgrounds to apply. Leo Technology Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Leo Technology website.