Information Security Manager

Information Security Manager

Location: Newport

Job Type: Full-time, Hybrid (1 day per week)

Salary: 60 – 70K plus 10% bonus

We are seeking an Information Security Manager to join our client’s IT team. This role is crucial in ensuring IT risks are identified, measured, and actively managed to protect the organisation from potential impacts. You will develop and implement IT policies, conduct risk assessments, and ensure compliance with regulatory requirements while driving improvements in IT governance processes.

Key Accountabilities

• Identify, evaluate, and manage IT risks across infrastructure, data protection, and lifecycle management.

• Own and maintain the IT risk register, ensuring mitigation plans are in place.

• Align risk management frameworks with industry standards (ISO27001, NIST, CIS Critical Controls).

• Lead IT audits, coordinate fieldwork, and track findings to ensure timely resolution.

• Develop and implement IT policies, procedures, and security awareness initiatives.

• Act as an SME, providing guidance on IT governance, compliance, and risk mitigation strategies.

Required Skills & Qualifications

• Proven experience in IT risk management, security governance, and compliance.

• Strong knowledge of ISO27001, GDPR, PCI-DSS, and cybersecurity frameworks.

• Experience in IT audit coordination and risk assessment methodologies.

• Excellent communication and stakeholder management skills.

• Desirable - Certifications such as CRISC, CISA, CISM, or CISSP

Benefits

• 10% discretionary performance related bonus

• Hybrid working

• Generous annual leave & pension contributions

• Professional development & training opportunities

• Life assurance & employee rewards programs

• Supportive and collaborative work environment

If you have experience in IT risk management and compliance and are looking for a new challenge, this is the role for you.

Do not delay—apply today! Successful applicants will be contacted within 24–48 working hours.