Information Security Manager

Requirements of the role

About the Department

The Risk and Information Governance Department plays a critical role in ensuring the SRA’s compliance with regulatory and security standards. We work collaboratively across the organisation to manage risk, protect information assets, and uphold the highest standards of governance and assurance.

The Role

This is an exciting opportunity to lead and manage the SRA’s ISO:27001 certified Information Security Management System (ISMS). As Information Security Manager, you’ll be a subject matter expert, providing strategic advice and operational support to ensure robust information security practices are embedded across the organisation.

You’ll work closely with IT Security, Risk, and Governance colleagues to assess and manage risks, investigate incidents, and deliver assurance activities. You’ll also lead internal audits, maintain compliance with PCI DSS, and manage external certification processes.

This role is ideal for someone with strong analytical skills, excellent stakeholder engagement experience, and a deep understanding of ISO:27001 and information security frameworks.

View on member website