Information Security Officer

Basingstoke
20 hours ago
Create job alert

Information Security Officer
 
Overview
We are seeking an experienced Information Security Officer to play a pivotal role in managing and enhancing our clients security posture. The successful candidate will be responsible for overseeing information security risks, leading security operations and governance, and maintaining our ISO27001 and Cyber Essentials Plus certifications.
 
Working closely with the IT leadership team, this role will ensure the right security controls are embedded into the systems designed, build and operate. Also acting as a company-wide champion for information security—supporting teams, raising awareness, and ensuring compliance with legal, regulatory and contractual obligations.
 
Role & Responsibilities

Manage and maintain the Information Security Management System (ISMS) aligned to ISO27001.
Oversee external certification processes and manage external audit programmes.
Deliver the internal information security audit programme.
Own monthly and quarterly information security governance forums.
Define and continuously evolve the organisation’s information security strategy.
Act as security architecture SME to support system development and change initiatives.
Advise operational teams on the implementation and improvement of security controls.
Develop and deliver a company‑wide information security training and awareness programme.
Serve as the Primary Incident Response Manager for information security incidents.
Manage and review information security risks across the organisation.
Lead information security improvement initiatives.
Oversee supply chain information security risks and vendor assessments. 
Essential Skills & Experience

Strong experience in policy and standards development.
Cyber incident response expertise.
Security architecture knowledge.
In-depth understanding of ISO27001 controls.
Experience with Cyber Essentials Plus certification.
Strong risk management capability.
Proven ability to communicate with and influence senior stakeholders. 
Desirable

Audit process management.
Supplier risk reviews. 
Qualifications

Degree-level education preferred but not essential.
Minimum 5 years' experience in an information security role.
CISSP (or equivalent) required.
C|CISO certification desirable

Related Jobs

View all jobs

Chief Information Security Officer

Director of Group Cyber Security Services

Cyber Security Analyst - Training Course

Trainee Cyber Security Assistant - Training Course

Information Governance Officer

Information Governance Officer

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.