Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Information Security Manager image - Rise Careers
Job details

Information Security Manager

Qodea is Europe’s leading Google Cloud specialist consultancy. tmc3 is part of the Qodea group of companies, specialising in solving cyber security, data protection and compliance challenges for a range of customers across the public and private sector. 

A role within tmc3 will offer you fascinating work, excellent opportunities for growth and the freedom to realise your potential to excel. Combining strategies, technologies and innovation, we make cyber security a business enabler, delivering enduring results and enabling you to build a successful and rewarding career.  

To do this, we would expect you to have a strong technical background in cyber security domains such as network security, cloud security, application security, endpoint security, identity and access management, etc.

Role Overview

As an Information Security Manager, you’d be responsible for ensuring the confidentiality, integrity, and  availability of our customer organisation’s data. This role involves reviewing, developing, implementing, and maintaining security policies, procedures, and systems to protect against unauthorized access, cyber threats, and data breaches. A key focus will be on managing information security in  alignment with ISO 19650-3 standards and UK government handling requirements.

What you’ll do:

  • Risk Assessment: Identify and assess areas of significant information security risk to the customer organisation’s systems.
  • Policy Development: Develop security standards, procedures, and guidelines for the organization.
  • ISO19650-5 : reviewing proposed documentation and implement and track their requirements
  • Monitoring: Monitor information security threats in network and host systems.
  • Incident Response: Investigate security breaches and other cybersecurity incidents.
  • Training: Train staff on network and information security procedures.
  • Audits: Conduct regular system audits to ensure compliance with security policies.
  • Disaster Recovery: Review existing policies and work with stakeholders to establish disaster recovery procedures and conduct breach of security drills.
  • Compliance: Ensure the company complies with changing laws and regulations regarding information security.
  • ISO 19650-3 Compliance: Implement and manage information security measures in accordance with ISO 19650-3 & 5 standards.
  • ISO 19650-2 Knowledge: Understanding and applying ISO 19650-2 standards, which focus on the delivery phase of assets, including the development of clear Exchange Information Requirements (EIR) and responsibilities for delivering them.
  • UK Government Handling Requirements: Ensure compliance with UK government security policies, including the Government Security Classifications Policy and handling requirements for sensitive information. This includes understanding and applying the Security Policy Framework and other relevant guidelines.

What you’ll bring: 

  • A thorough understanding of the principles of Information Management as outlined as per ISO 19650 and the UK BIM Framework.
  • Experience with undertaking similar activities for delivery of major construction and infrastructure projects.
  • Experience in preparing Security Information Requirements.
  • Experience in a leadership role
  • The ability to influence multiple stakeholders, often with competing objectives, whilst preserving and maintaining excellent, collaborative relationships.
  • A good appreciation of the various functions and roles involved in the delivery of complex construction and infrastructure projects
  • Project management skills, able to multi-task and work flexibly to manage conflicting priorities.
  • Knowledge of all stages of the construction and infrastructure project lifecycle.

Original, strategic and operational consulting that provides transformational outcomes to high-profile customers. 

The opportunity to work in committed teams that blend in-depth industry experience with high quality consulting expertise. Intelligent and interesting colleagues who will develop and challenge you. 

A transparent career path where your advancement is objectively measured, enabling you to achieve your full potential. 

  • Competitive Market Salary 
  • Annual and referral bonus schemes 
  • 25 days holiday (increasing after time) 
  • Remote working  
  • Flexible Working (around core office hours)
  • Company Pension 
  • Dedicated training and development budget 
  • Professional membership budget 
  • Home office equipment (for remote working employees) 
  • Electric Vehicle Scheme 
  • Group Life Insurance 
  • Private Medical Cover
  • Enhanced Maternity / Paternity 
  • Employee discount and rewards platform 
  • Vision Care 
  • Regular team social events

Location:

There will be a requirement for the role-holder to travel regularly (2-3 days per week) to the customer site in either Reading or London (Vauxhall) so it would be preferable for the person we hire to live within a reasonable commuting distance of one of those locations.

Average salary estimate

$70000 / YEARLY (est.)
min
max
$60000K
$80000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Information Security Manager, Qodea

Welcome to tmc3, a proud member of the Qodea family, where we’re empowering businesses with robust cyber security solutions. We're on the lookout for an Information Security Manager who’s ready to take the reins in safeguarding our customers’ valuable data. At tmc3, we believe in blending strategies, technologies, and innovation to make cyber security a business enabler, not a barrier. In this pivotal role, you will champion information security by developing and implementing comprehensive policies that ensure the confidentiality, integrity, and availability of our client’s data. You will play a vital role in conducting risk assessments, monitoring potential threats, and responding to incidents promptly and effectively. Your ability to align our security measures with ISO 19650-3 standards will be crucial, as will your skills in implementing disaster recovery procedures that keep our clients safe and compliant amidst ever-evolving regulations. You won’t just be a guardian; you’ll train and empower staff to embrace security protocols, fostering a culture of awareness and compliance. On top of that, you’ll conduct regular audits, ensuring that we’re on top of our game. If you bring a strong technical background in cyber security, coupled with a passion for project management and a knack for building collaborative relationships with diverse stakeholders, we want to hear from you! Join us at tmc3, where your expertise will not only help protect customer organisations but also shape the future of security consultancy in an engaging and dynamic environment.

Frequently Asked Questions (FAQs) for Information Security Manager Role at Qodea
What are the responsibilities of an Information Security Manager at tmc3?

As an Information Security Manager at tmc3, your key responsibilities will include assessing information security risks, developing and maintaining security policies, monitoring threats, responding to incidents, and ensuring compliance with ISO standards and UK government requirements. You’ll serve as a pivotal figure in training staff and conducting audits to uphold a robust security framework.

Join Rise to see the full answer
What qualifications are needed for the Information Security Manager position at tmc3?

To excel as an Information Security Manager at tmc3, candidates should possess a thorough understanding of information management principles, particularly those highlighted by ISO 19650 standards. Experience in leading similar roles and a strong background in cyber security across various domains like network and cloud security are essential.

Join Rise to see the full answer
How does tmc3 support the professional growth of its Information Security Manager?

tmc3 is committed to fostering the professional growth of its Information Security Manager by offering a dedicated training and development budget, competitive salaries, and opportunities for career advancement. Employees are encouraged to pursue professional memberships, ensuring they remain at the forefront of the cyber security industry.

Join Rise to see the full answer
What is the work environment like for an Information Security Manager at tmc3?

At tmc3, the work environment is collaborative and supportive, with intelligent colleagues who challenge and develop your skills. You’ll have the flexibility to work remotely, coupled with opportunities to visit customer sites regularly, fostering a dynamic blend of office and field experience.

Join Rise to see the full answer
What benefits does tmc3 offer to its Information Security Managers?

tmc3 provides a competitive market salary, flexible working hours, 25 days of annual leave (increasing with tenure), a company pension scheme, private medical cover, and various employee perks including an electric vehicle scheme and a rewards platform, ensuring our Information Security Managers enjoy a comprehensive benefits package.

Join Rise to see the full answer
Common Interview Questions for Information Security Manager
What is your experience with ISO 19650 standards?

In your response, highlight your thorough understanding of the ISO 19650 standards and how you've applied these principles in previous roles, particularly in relation to information management in construction and infrastructure projects.

Join Rise to see the full answer
How do you approach risk assessment in information security?

Discuss your methodical approach to identifying and assessing risks, emphasizing the importance of thorough analysis, stakeholder collaboration, and the implementation of mitigation strategies.

Join Rise to see the full answer
Can you describe a challenging cyber security incident you've managed?

Share a specific example that highlights your incident response capabilities. Be sure to mention the steps you took to resolve the issue and what you learned that could be applied in future scenarios.

Join Rise to see the full answer
How do you ensure compliance with changing information security regulations?

Explain your proactive approach to staying updated on regulations and how you implement changes within the organization to maintain compliance, emphasizing continuous education and staff training.

Join Rise to see the full answer
What strategy do you use for developing security policies?

Discuss how you collaborate with various stakeholders to analyze needs, address gaps, and benchmark best practices while ensuring that policies are practical and enforceable.

Join Rise to see the full answer
Describe how you've trained staff on security procedures in the past.

Share methods you've used for effective knowledge transfer, including workshops, hands-on exercises, and ongoing education. Emphasize the importance of building a security-aware culture.

Join Rise to see the full answer
How do you handle conflicting priorities in projects?

Illustrate your project management skills and your ability to prioritize tasks by urgency and importance, keeping lines of communication open with stakeholders to manage expectations effectively.

Join Rise to see the full answer
What tools or technologies do you use for threat monitoring?

Mention specific tools or technologies you're familiar with, such as SIEM solutions, IDS/IPS systems, and how you've utilized them for ongoing threat monitoring and analysis.

Join Rise to see the full answer
How do you keep yourself updated on the latest cyber security threats and trends?

Discuss your commitment to professional development through attending conferences, reading industry publications, networking with peers, and participating in relevant training sessions.

Join Rise to see the full answer
Why do you want to work at tmc3 as an Information Security Manager?

Express your enthusiasm for tmc3's mission and values, how they align with your career aspirations, and what unique contributions you can bring to the team based on your experiences.

Join Rise to see the full answer
Similar Jobs
Qodea Remote No location specified
Posted yesterday

Join Qodea as a Platform Engineer and help deliver cutting edge cloud solutions while advancing your career in a dynamic environment.

Qodea Remote No location specified
Posted 3 days ago

Qodea is looking for a dynamic SOC Team Lead to elevate their security operations and lead a dedicated team.

Photo of the Rise User
Auria Hybrid No location specified
Posted 12 days ago

Auria seeks a skilled System Administrator Lead to enhance national security solutions at Schriever SFB.

Photo of the Rise User
IMH Hybrid Workday Conversion
Posted 12 days ago

We are looking for a dedicated Application Analyst to enhance the efficiency of healthcare applications at Intermountain Health.

Join A1 Bulgaria as a Security Analyst to strengthen their digital solutions with your expertise in Azure Sentinel.

Photo of the Rise User
Unisys Remote Diegem, Flemish Brabant, Belgium
Posted 9 days ago

Join Unisys as a Junior Systems Administrator/Engineer and contribute to high-performance system solutions while gaining valuable training in the field.

Photo of the Rise User
Posted 5 days ago

Join Monzo as a Technology Risk Senior Analyst and help protect customer data in a rapidly evolving fintech environment.

Oura Remote No location specified
Posted 6 days ago

Join Oura as a Senior IT Delivery & Planning Lead to drive agile project management for our Customer Experience Technology team.

Photo of the Rise User
ManTech Hybrid US, Loudoun County, VA; Virginia, Chantilly, Loudoun County, VA
Posted 12 days ago

As a Principal Cyber Support Developer at ManTech, you'll leverage advanced cybersecurity technologies to protect and manage customer missions.

Photo of the Rise User
General Dynamics Information Technology Hybrid US, Sarpy County, NE; Nebraska, Offutt Air Force Base, NE
Posted 10 days ago

Seeking a Cyber Analyses and Remediation Engineer to strengthen security measures for USSTRATCOM’s IT services and ensure top-level defense capabilities.

MATCH
Calculating your matching score...
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
No info
HQ LOCATION
No info
EMPLOYMENT TYPE
Full-time, remote
DATE POSTED
April 10, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
LATEST ACTIVITY
Photo of the Rise User
Someone from OH, Cincinnati just viewed Machine Learning Engineer at Allstate
Photo of the Rise User
Someone from OH, Twinsburg just viewed Data Analyst/Power BI Developer at Datadog
Photo of the Rise User
Someone from OH, Cuyahoga Falls just viewed Small Fleet Underwriter at HDVI
Photo of the Rise User
Someone from OH, Dublin just viewed Product Designer, Entry Level at Govini
Photo of the Rise User
Someone from OH, Columbus just viewed Support Associate-7 at Tory Burch
Photo of the Rise User
Someone from OH, Columbus just viewed Project Manager at Treering
Photo of the Rise User
Someone from OH, Columbus just viewed Product Manager, Assessment Student Experience at Ellevation
Photo of the Rise User
Someone from OH, Hamilton just viewed Team Member Travel Coordinator at Allegiant
Photo of the Rise User
Someone from OH, Toledo just viewed IT Telecom Administrator at Anduril Industries
Photo of the Rise User
Someone from OH, Kent just viewed Director, Strategic Partnerships at Teaching Lab