Reed Technology are delighted to be working with initiative Bristol based organisation with their search for an Information Security Manager
Salary – £50,000
Remote/ hybrid working
Working within a small but dynamic team you will be the go to person for all things information security. In this role, you will be the primary point of contact for security-related enquiries, ensuring that the security posture remains robust, effective, and aligned with both internal and external requirements.
Key Responsibilities
- Monitor security intelligence sources, including vendor notifications, security announcements, and internal system alerts. Respond to incidents, triage effectively, and provide clear communication to internal and external stakeholders, including responding to customer questions.
- Manage compliance obligations, including maintaining ISO certifications, Cyber Essentials, and handling external audits. Ensure that policies and processes benefit the business without unnecessary bureaucracy.
- Oversee access control, assist with the secure configuration of systems, and ensure accurate, up-to-date documentation is available for staff and customers. Support service owners in applying appropriate security controls.
- Identify and implement improvements in security processes, from internal drills and staff training to refining incident response procedures and reporting mechanisms. Regularly review and update security documentation to reflect current best practices.
We are looking for
- Background in cyber security
- A solid understanding of what operating and securing a cloud infrastructure environment looks like—or should look like. This includes knowledge of operational aspects, cost considerations, functionality, and identifying and mitigating risks.
- working knowledge of compliance frameworks, particularly ISO27001 and its associated ISMS, is essential. Experience with other frameworks, such as Cyber Essentials, would also be beneficial. You should understand how these frameworks work and how to manage the trade-offs they present.
An awareness of international data privacy regimes and their impact on operating in multiple territories simultaneously. We don't expect you to be an expert in all of them, but you should know their existence and how to operate around them.
If you are interested in this fantastic opportunity please apply online or for more information please contact me on