**Information Security Manager Role Summary**
The organization seeks a seasoned Information Security Manager to lead the development and ownership of its internal security governance, aligning day-to-day operations with ISO 27001-level standards. This high-impact role involves building a practical, scalable security culture from the ground up.
Main Responsibilities:
* Lead the development and ownership of the organization's Information Security Policy (ISP)
* Ensure day-to-day operations are aligned with policy, and update both where needed
* Build and maintain a risk register, and lead mitigation planning
* Run internal investigations into any security breaches or process gaps
* Review systems and processes to ensure security is built into delivery
* Lead regular security reviews with key internal stakeholders
About You:
* Strong working knowledge of ISO 27001 or similar frameworks (e.g. NIST, SOC 2)
* Proven experience leading or building out internal security governance
* Ability to work across both technical and business teams
* Hands-on experience with risk, compliance, and incident response
* Bonus: background in financial services, consulting, or other regulated environments
Why This Role?
* Full ownership of the internal security roadmap
* Backed by a leadership team that values practical, forward-thinking security
* Flexible structure – open to full-time or part-time
* High visibility and real impact in a growing, purpose-driven business
* Clear growth path into leadership, architecture, or strategic advisory work