IT Security Manager

IT Security Manager

An exciting opportunity has arisen for an experienced, hands-on-IT Security Manager-to lead a small in-house security team and drive the ongoing evolution of a modern cyber security function.

This role is ideal for a-senior or lead Security Engineer-ready to step into management, combining technical expertise with team leadership and strategic influence.

Role

The IT Security Manager will take ownership of the organisation''s cyber security posture across systems, infrastructure, and cloud environments. Acting as a trusted advisor to senior stakeholders, the role blends hands-on technical involvement with leadership and strategic oversight.

Key Responsibilities

• Lead, mentor, and develop a high-performing cyber security team
• Own and deliver the IT security strategy, policies, and best practices
• Oversee day-to-day security operations (SIEM, EDR, incident response, vulnerability management)
• Ensure compliance with frameworks such as-ISO 27001, NIST, CIS Controls and GDPR
• Manage risk assessments, remediation planning, and continuous improvement initiatives
• Secure cloud and hybrid environments (Azure/AWS)
• Act as the escalation point for complex security incidents and threats
• Collaborate with engineering and infrastructure teams to embed-Secure by Design-principles
• Manage third-party security vendors and services
• Lead audits, compliance activities, and incident response planning
• Drive security awareness and foster a strong security culture across the business

Key Skills & Experience

• Proven experience in a cyber security leadership or senior-level role
• Strong hands-on background in security operations and engineering
• Experience with tools such as SIEM (Splunk), EDR, and vulnerability scanning platforms
• Solid understanding of cloud security (Azure, AWS) and enterprise IT environments
• Knowledge of identity & access management (IAM, MFA, RBAC, PAM)
• Experience with risk management and ISO 27001 compliance
• Understanding of incident response, threat detection, and DevSecOps practices
• Excellent communication skills with the ability to translate technical risk into business terms

Desirable

• Certifications such as CISSP, CISM, CCSP, CRISC or CEH
• Cloud certifications (AZ-500, AWS Security Specialty)
• Exposure to Splunk ES