Information Security Manager

McGrathNicol is a specialist Advisory and Restructuring firm trusted by blue chip clients to partner with them to devise and implement pragmatic solutions for complex business issues.

We are seeking an experienced and highly skilled Information Security Manager to lead and manage our ISO 27001 certified company's information security program.

You will be responsible for ensuring the confidentiality, integrity, and availability of the company's information assets and compliance with relevant regulatory requirements. You will work closely with the broader IT and Digital team and across the organisation to develop, implement, and maintain security policies, processes, security systems and controls that protect our information and technology infrastructure.

What you will do

• Implement/Oversee the management of the company's Information Security Management System (ISMS), including ISO27001 standards and ensure their ongoing effectiveness.
• Support compliance with legal, regulatory, and contractual requirements related to information security and data protection.
• Develop, implement and continuously improve information security policies, procedures, and guidelines to protect the organisation's assets and minimise risk.
• Advise on the firm's security architecture, ensuring the integration of security controls and best practices across all technology layers, including networks, systems, applications, and data, to provide a comprehensive and robust defence against potential threats and vulnerabilities.
• Collaborate with cross-functional teams to identify and assess potential risks and vulnerabilities in the organisation's information systems and develop mitigation plans.
• Support the organisation's incident response and management efforts, encompassing identification, analysis, containment, and recovery of security incidents, to maintain a robust security posture.
• Drive the company's security awareness and training initiatives, fostering a strong security culture and promoting adherence to best practices among employees.

• Develop and monitor information security key performance indicators (KPIs), to assess the effectiveness of the security program and support continuous improvement.

• Deliver regular reports to executive management, providing updates on the status of the information security program and potential risks, to support informed decision-making and strategic planning.

Who you are

• Experience managing an ISO 27001 certified organisation and a strong understanding of information security best practices and frameworks.
• Strong knowledge of information security principles, risk management, and incident response.
• Expert knowledge of leading security frameworks, systems, tools, methods, and practices.
• Strong analytical, project management and problem-solving skills, with the ability to make informed decisions under pressure.
• Excellent communication and presentation skills, with the ability to clearly convey complex concepts to both technical and non-technical stakeholders.
• Have a certification in information security management, such as CISSP, CISM, or ISO 27001 Lead Implementer/Lead Auditor, and a bachelor's degree in information technology, Computer Science, or a related field.

What we offer you

At McGrathNicol, you'll thrive in an empowering environment where your expertise drives real impact. We offer a competitive annual bonus program, alongside exceptional training and career development opportunities. Our inclusive culture fosters growth through personalised mentorship. You'll also benefit from comprehensive support such as 26 weeks parental leave, additional leave options, employee assistance, health and wellbeing programs, and opportunities for social and community engagement. Join us and be part of a team that values your contributions and supports your success.

Interested?

If you're ready to make a lasting impact and grow your career, apply today to join our dynamic team at McGrathNicol. For more information, please contact our national HR team