Information Security Manager (Perm - Hybrid)
Posted a day ago
- Manchester, Greater Manchester
- Any
- External
- Expires In 3 months
Job Description We are seeking an Information Security Manager for a global retail organisation based near Manchester or Midlands (hybrid position) on a permanent basis.
This is a hands-on security management role responsible for overseeing governance, risk, compliance, and security operations across global regions. The role focuses on embedding robust security frameworks, maintaining compliance, and supporting effective operational security across the business.
Key Responsibilities
1. Security Governance & Compliance
Develop and implement information security policies, standards, and procedures across global operations.
Ensure compliance with recognised frameworks such as ISO 27001, NIST, and others as required.
Lead annual security audits and maintain continuous compliance across regional entities.
2. Enterprise Risk Management & Supply Chain Security
Maintain and improve the global information security risk management framework.
Conduct regular security risk assessments and support mitigation planning.
Manage supply chain security, including vendor risk assessments and responses to customer due diligence.
3. Incident Response Policy & Preparedness
Develop and maintain cybers...
This is a hands-on security management role responsible for overseeing governance, risk, compliance, and security operations across global regions. The role focuses on embedding robust security frameworks, maintaining compliance, and supporting effective operational security across the business.
Key Responsibilities
1. Security Governance & Compliance
Develop and implement information security policies, standards, and procedures across global operations.
Ensure compliance with recognised frameworks such as ISO 27001, NIST, and others as required.
Lead annual security audits and maintain continuous compliance across regional entities.
2. Enterprise Risk Management & Supply Chain Security
Maintain and improve the global information security risk management framework.
Conduct regular security risk assessments and support mitigation planning.
Manage supply chain security, including vendor risk assessments and responses to customer due diligence.
3. Incident Response Policy & Preparedness
Develop and maintain cybers...