Operational Security Manager

Want to lead security operations that directly help clients strengthen their security posture?

As a GRC Operational Security Manager, you will implement the strategy, policies and working practices defined within the Information Security Management System for your assigned client or clients. You will play a key role in helping them understand their security challenges and improve their overall security maturity.

You will be a trusted advisor, fostering a strong culture of compliance and risk awareness, and you will take the lead in specifying, planning and implementing security improvements. If you are looking for the opportunity to influence at the front line of cyber security and deliver real value to clients, this could be a great next step for you.

We can offer great career progression opportunities, the ability to be based anywhere across the UK, benefits which you can flex to meet your needs, and training and development opportunities.

What you'll be doing

• Implementing the strategy, policy and working practices defined within the ISMS for assigned clients.
• Delivering services in line with ISO27001 and providing reporting on the effectiveness of the ISMS.
• Managing and maintaining security operations in line with policies, standards and industry best practice.
• Reviewing and managing security risk and threat assessments.
• Managing security incidents and building strong relationships to promote early identification and resolution.
• Managing threat detection and vulnerability management services and leading required remediation.

What you’ll bring

• Experience as a GRC or Operational Security Manager with strong knowledge of security policies and standards.
• Technical aptitude and broad knowledge of information security solutions and operations.
• Understanding of IT security solutions and how they integrate into business processes.
• Experience defining security maturity and roadmaps aligned to client priorities.
• Experience building trusted relationships with senior stakeholders.
• CISSP, CISA, CISM or equivalent Information Security qualification.

It would be great if you had

• Experience working with MoD, Police or Public Sector environments.

If you’re interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!

Employment Type: Full-time, Permanent. Location: Remote. Security Clearance Level: [Insert security clearance level]. Internal Recruiter: Rebecca. Salary: £55,000 – £75,000. Benefits: £5,400 car allowance, 25 days annual leave with the option to buy additional days, private medical, life assurance, pension, and generous flexible benefits fund.

Although this role is advertised as full-time, we believe that flexibility at work can promote work/life balance, increase your motivation, reduce stress and improve performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if you’re interested and need to work flexibly, we encourage you to apply and talk to us about what might be possible.

Loved reading about this job and want to know more about us?

Sopra Steria’s Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client’s goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK’s most complex safety‑ and security‑critical markets.