Information Security GRC Manager (Fintech)

TL;DR

Information Security GRC Manager (Fintech): Managing and reporting Information Security Risks faced by Technology Services and Business teams in delivering hirify.global’s systems and services with an accent on ensuring appropriate controls, policies and procedures are in place to protect the company. Focus on coordinating and responding to external/internal IT audits and due diligence exercises.

Location: Hybrid in Manchester or London, United Kingdom. You'll spend 50% of working time per month in the office. New team members will spend an initial period full-time in the office.

Company

hirify.global is one of the UK’s fastest-growing investment platforms, serving over 644,000 customers and managing £103.3 billion in assets.

What you will do

• Develop and deliver information security policy aligned to industry recognised frameworks (typically ISO27001/2).
• Manage and report on exceptions to policy.
• Report on the status of Information Security and the security change programme.
• Partner with Business and Technology teams to develop and track remediation plans for identified risks and issues.
• Support the evaluation of the security posture for key Third Parties.
• Undertake risk profiling of hirify.global’s information and technology assets.

Requirements

• Strong understanding and knowledge of Information Security risk management tools and techniques.
• Experience of Information Security standards and frameworks.
• Awareness and understanding of the Information Security threat landscape.
• Strong understanding of IT General Controls frameworks.
• Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc.
• Minimum 5 years’ experience in an Information Security role gained in a financial services environment is preferred.
• Attained or working towards CISM certification.

Culture & Benefits

• Competitive starting salary and discretionary bonus scheme.
• Starting holiday entitlement of 27, increasing up to 31 days with length of service and a holiday buy and sell scheme.
• Hybrid working model, where you'll spend 50% of working time per month in the office.
• Personal development programmes built around you and your career goals.
• Casual dress code.