Security Manager

Security Manager

Job Description

[Up to c. £160k Comp Package | Hybrid Working - 2/3 Days in Office]

Role Overview

We’re representing a globally recognised investment management firm that combines long-term conviction with a deep focus on research, technology, and operational excellence. As the firm continues to evolve its global security posture, it is now seeking a Security Programme & Operations Manager to drive delivery across its multi-year security strategy. Reporting directly to the Head of Security, you’ll oversee both day-to-day cyber operations and the execution of a three-year strategic security roadmap. The role balances technical oversight with policy and governance, managing a small team of security and network engineers while collaborating closely with infrastructure, platform, software, and risk functions. Operating from the firm’s London office - its largest and most technology-centric hub - you’ll play a key role in embedding a mature, proactive approach to security across a global footprint...

Key Responsibilities

• Define and deliver the firm’s multi-year security programme, aligning objectives with overall technology and risk strategy
• Lead and mentor a small operational security team comprising SOC and Network Engineers, promoting accountability and high performance
• Coordinate security incident management, ensuring timely response, structured post-incident analysis, and long-term remediation planning
• Drive data protection and DLP initiatives, ensuring incidents are both contained and translated into broader strategic improvements
• Design, implement, and continuously improve policies, standards, and procedures that integrate security into engineering and operational workflows
• Report to senior stakeholders on risk posture, security KPIs, and programme progress, presenting technical matters in business terms
• Manage the selection and governance of security tooling and external partners, balancing capability, cost, and operational resilience
• Collaborate closely with Software, Platform, and Infrastructure teams to embed secure design and compliance throughout the lifecycle
• Support vendor assurance, regulatory engagement, and client-facing security reviews in partnership with Risk and Compliance
• Monitor emerging risks, assess new technologies, and lead proactive initiatives to strengthen the firm’s security maturity

What You’ll Bring...

• 7+ years’ experience across security engineering, operations, or infrastructure, with proven exposure to leadership or programme delivery
• Broad technical understanding of network, endpoint, cloud, and application security controls
• Hands-on experience leading or contributing to security initiatives aligned with ISO 27001, NIST, or CIS Controls
• Familiarity with incident management, vulnerability handling, and risk governance processes
• Strong experience with security tools such as SIEM, DLP, IDS/IPS, and endpoint detection platforms
• Excellent stakeholder management and communication skills - able to convey complex technical challenges clearly and persuasively
• Background in vendor management and security tooling oversight within regulated or enterprise environments
• Proven ability to mentor, coordinate, and empower small teams while maintaining a pragmatic, delivery-focused approach
• (Preferred) Knowledge of DevSecOps practices, securing CI/CD pipelines, or containerised workloads
• (Preferred) Recognised industry certifications such as CISSP, CISM, or GIAC

...

Apply for this role

All fields marked with * are required.