Information Security GRC Manager (Fintech)

TL;DR

Information Security GRC Manager (Fintech): Managing and reporting information security risks for technology and business teams, ensuring controls, policies, and procedures align with industry best practices and regulatory legislation. With an accent on developing security policies, tracking remediation plans, and supporting external/internal IT audits. Focus on developing and delivering robust security policies, tracking risk remediation, and ensuring compliance with industry standards within a financial services environment.

Location: Hybrid: 3-4 days per week in office in Manchester or London. New team members will spend the first 3 months full-time in the office.

Company

hirify.global is one of the fastest-growing investment platform businesses in the UK, offering an award-winning range of solutions to professional financial advisers and DIY investors.

What you will do

• Develop and deliver information security policy aligned to industry recognised frameworks (typically ISO27001/2).
• Manage policy exceptions and report on Information Security status and change programmes.
• Partner with Business and Technology teams to develop and track remediation plans for identified risks and issues.
• Support and develop the evaluation of security posture for key Third Parties.
• Undertake risk profiling of hirify.global’s information and technology assets.
• Support the business in achieving regulatory requirements, including consumer duty.

Requirements

• Minimum 5 years’ experience in an Information Security role, preferably gained in a financial services environment.
• Strong understanding and knowledge of Information Security risk management tools and techniques, standards (ISO27001, NIST), and the threat landscape.
• Awareness of Information Security solutions (e.g., email/web gateways, SIEM, Endpoint protection) and IT General Controls frameworks.
• Attained or working towards CISM certification.
• Effective communication skills, both written and verbal.
• Ability to work hybrid, spending 3-4 days per week in the office in Manchester or London.
• New team members will be required to work full-time in the office for the first 3 months.

Culture & Benefits

• Competitive starting salary with holiday entitlement starting at 27 days, increasing up to 31.
• Choice of pension schemes with matched contributions up to 8% and a discretionary bonus scheme.
• Annual free share awards scheme and a Buy As You Earn (BAYE) Scheme.
• Health Cash Plan, discounted private healthcare, dental plan, and free gym access.
• Enhanced maternity, paternity, and shared parental leave policies.
• Personal development programmes and access to personal skills workshops.
• Calendar of social events, including monthly payday drinks and annual parties.
• Friendly working environment with a strong sense of teamwork and casual dress code.