Senior Consulting Information Security Manager

ITO Information Security Management delivers advisory and implementation services, helping organisations enhance their security maturity and resilience. We blend industry-leading frameworks with tailored strategies, risk assessments, and AI-driven automation to provide pragmatic, high-impact security solutions

• Lead and mentor Consulting ISMs, fostering skill development and ensuring quality delivery across engagements.
• Develop customized security strategies and maturity roadmaps unique to each client organisation, aligning with frameworks such as NIST Cybersecurity Framework and ISO/IEC 27001.
• Ensure alignment with complex security frameworks and maturity assessment models, providing deep-dive expertise on topics such as Industrial Control Systems (ICS) security.
• Provide expert advice to IT Managers and IT Directors on information security strategy, risk management, and compliance with industry standards and legal requirements.
• Conduct advanced gap analyses, program assessments, and risk evaluations, recommending prioritized remediation plans.
• Shape project strategy and influence engagement outcomes by driving innovation in security practices, tools, and automation workflows.
• Guide clients through incident response planning and crisis management, offering expert support during exercises and real incidents.
• Collaborate with internal teams and client stakeholders to integrate security governance and compliance objectives into broader IT and business processes.
• Act as a visionary in organizational growth by contributing to process improvement, promoting best practices, and driving security culture.
• Drive the innovation and governance of AI prompt libraries and automated playbooks for consulting use cases such as risk assessments and policy automation.
• Lead proof-of-concepts and pilots for AI/ML security tools, guiding cross-functional integration and scaling successful solutions.
• Shape automation workflows that leverage AI insights for enhanced risk analysis, reporting, and continuous compliance monitoring.

• Proven experience in information security consulting, with demonstrated mentorship of junior consultants.
• ISACA certifications such as CRISC, CDPSE, CGEIT, or ISO/IEC 27001 Lead Auditor; and/or (ISC)² CISSP with ISSAP or ISSMP concentration.
• Proven ability to develop and implement customized security strategies and maturity models for diverse industries.
• Deep domain knowledge of complex security frameworks, control systems security (ICS/SCADA), and maturity assessment methodologies.
• Strong skill in advising senior IT leaders (IT Manager, IT Director) on risk-based decision-making, strategy development, and governance.
• Experience driving technical direction, influencing project strategy, and delivering high-impact security solutions.
• Visionary leadership and collaboration skills, with a track record of fostering teamwork and contributing to organisational growth.
• Excellent communication, presentation, and stakeholder management abilities.
• Bachelor’s or Master’s degree in Information Security, Computer Science, or related field, or equivalent professional experience.
• Advanced professional certifications as listed above.

Wellbeing focused – Our people are our greatest assets, and ensuring everyone feels their best self to come to work is integral

• Annual Leave – 26 days of annual leave, plus public holidays and the ability to buy additional days
• Employee Assistance Programme – Free advice, support, and confidential counselling available 24/7 through Care First
• Endometriosis Friendly Employer - We are proud to confirm our commitment to developing an environment and culture that allows those with endometriosis to thrive in the workplace

Personal Growth - Regardless of where you are at in your career, we’re committed to enabling your growth personally and professionally

• Development Programmes – From Future Managers to Leadership Training, our development programmes help you get where you need to go
• Performance Bonus – Our Group-wide bonus scheme enables you to reap the rewards of your success

Financial wellbeing - We understand as well as your mental wellbeing, your financial wellbeing is really important

• Pension Scheme – Our plan with Scottish Widows offers 5% matched contribution by the company
• Income protection insurance – Providing you with support and assistance when you need it most

Recognition – Highlighting and rewarding the great work our people do

• Performance & Talent – Our own technology platform that allows you to get real-time feedback, conversations and goals to help you become your best self

Making a Difference – we provide opportunities to help our people make a difference to the causes they care about

• MatchIt! – Fundraise for a cause close to your heart and OneAdvanced will match part of the funding
• Volunteering Time – Our volunteering leave scheme allows you to use your time to help those who need it
• Pennies from Heaven – donate the pennies from your pay check to help make a difference without lifting a finger