Information Security Manager

Kingston upon Hull
10 hours ago
Create job alert

Introduction

Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training.

The Role:

This role is part of our Public Safety Solutions Business Unit.

The Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations.

The role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response.

Key Responsibilities:

Security Leadership & Assurance

Own and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations.

Lead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001.

Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls.

Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity.

Provide regular assurance reporting to senior leadership and stakeholders.

Risk Management & Compliance

Own and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite.

Conduct and support risk assessments, internal audits, and external certification activities.

Ensure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the National Cyber Security Centre.

Work with internal teams and suppliers to implement proportionate and effective security controls.

Security Operations & Incident Management

Act as the primary point of contact for security incidents, leading or coordinating response activities.

Take a hands-on role in incident investigation, root cause analysis, and remediation.

Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication.

Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers).

Service Resilience & Operational Security

Ensure security is embedded in the design and operation of services supporting emergency response.

Work closely with operational and technical teams to maintain high levels of system availability and resilience.

Support business continuity and disaster recovery planning, testing, and continuous improvement.

Security Awareness & Culture

Develop and deliver targeted security awareness and training programmes.

Promote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services.

Stakeholder Engagement

Act as a trusted advisor to senior leadership, operational teams, and external stakeholders.

Support engagement with public sector customers, providing assurance on security controls and practices.

Collaborate with suppliers and partners to ensure security requirements are met across the supply chain.

Qualifications & Skills:

Proven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services.

Practical experience with security monitoring and incident response tooling (SIEM/XDR)

Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS.

Practical experience with Cyber Essentials / Cyber Essentials Plus certification.

Experience managing security risks, incidents, audits, and compliance activities in operational environments.

Ability to balance strategic leadership with hands-on delivery in a small organisation.

Strong understanding of service resilience, availability, and risk in mission-critical systems.

Excellent communication skills, with the ability to engage both technical and non-technical stakeholders.

By submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview

Related Jobs

View all jobs

Information Security Manager

INFORMATION SECURITY MANAGER

Information Security Manager

Information Security Manager

IT Security Manager

Security Manager

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.