IT Security Manager

The Opportunity:

Job Title: IT Security Manager

Industry: Enterprise SaaS

Working Set-Up: Remote first with occasional visits to London office

Salary - £65,000-£75,000 p/a + discretionary 10% bonus

Interview process: 3 stages (virtual)

The Role:

We're supporting a fast-growing technology business in the search for an IT Security Manager to lead and develop its group-wide security function. This is a newly created position offering the opportunity to build and shape security practices from the ground up within a scaling international organisation.

In this position, you'll work closely with Engineering, SRE, Product, Compliance and Customer Care teams, taking ownership of security strategy, operational security delivery, risk management, and continuous improvement across the business.

This role would suit a proactive and technically hands-on security professional who enjoys operating across both strategic and operational environments.

As IT Security Manager, you will take overall responsibility for identifying, prioritising and reducing security risk across infrastructure, applications, SaaS platforms, operational processes and user access management. You'll act as the key point of contact for all security-related matters internally and externally, including audits, client due diligence requests and third-party security engagements.

Day to day:

• Leading and developing the organisation's security function and roadmap
• Managing and prioritising security risks, remediation activity and ongoing improvements
• Working collaboratively with technical and operational teams to implement practical security controls
• Owning Identity & Access Management processes across cloud and SaaS environments
• Improving governance around authentication, permissions, privileged access and device security
• Supporting the security of APIs, applications and external platform access
• Managing relationships with third-party security providers and ensuring recommendations are delivered effectively
• Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST
• Acting as an escalation point for significant security incidents when required
• Driving security awareness and embedding best practice across the wider organisation
• Supporting alignment of security standards and processes across multiple business units

About You:

• Strong experience within Cloud Security, ideally Google Cloud Platform (GCP)
• Expertise across IAM, SSO, SaaS security and API security
• Experience working closely with engineering and operational teams
• Hands-on scripting or automation experience using Python, Bash or similar tools
• Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST
• Knowledge of security methodologies such as MITRE ATT&CK
• Excellent communication and stakeholder management skills
• Experience operating within high-growth or evolving organisations
• French language skills would be advantageous

This is an excellent opportunity to join a growing business where you'll have genuine ownership, influence and the ability to shape the future direction of security across the organisation!

Important Notice:

We are expecting a high volume of applications for this role and while we do our best to respond to as many applicants as we can, it isn't always possible to get back to everyone. With this in mind, if you've not heard from a member of our team within 2 weeks of submitting your CV, please assume that your application has not been successful on this occasion.

Both Leo Technology and the companies we partner with are incredibly passionate about building environments where people from all backgrounds and walks of life are embraced. Our mission is to welcome everyone and create inclusive teams. We celebrate difference and encourage people from all backgrounds to apply.

Leo Technology Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Leo Technology website.