Job Title

Permanent W.London - 4 days office basedWe are working with a highly respected financial services organisation to appoint an experienced Information Security Assurance Officer. This role plays a key part in safeguarding the business against information and cyber security threats, ensuring risk is managed across all operations in line with regulatory expectations and industry best practices.This opportunity would suit a motivated security professional with strong technical and governance experience, ideally gained within a highly regulated environment such as financial services or banking.The RoleYou will be a core member of the Information Security team, responsible for the oversight and assurance of cyber and information security controls across the business. Working closely with internal stakeholders and external partners, you will ensure that security risks are identified, mitigated, and documented, contributing to the evolution of the cyber security roadmap.This is a hands-on role involving second line assurance activities, stakeholder engagement, policy development, incident response, and training. You will collaborate with teams across IT, Security Operations, Risk, and Data, as well as supporting group-level functions internationally.Key ResponsibilitiesEvaluate and assure information security risks associated with projects, systems, and change initiativesCollaborate with engineering and operations teams to embed security into business processesProvide guidance on compliance with internal and external cyber security standardsLead or contribute to the creation of security policies, procedures, and governance frameworksManage remediation of findings from audits, assessments, and regulatory reviewsCoordinate with vendors on new technologies and proof-of-concept initiativesSupport cyber incident response efforts, including participation in the response teamDeliver internal security awareness training to business usersProduce reports for management and governance committeesAssist in budgeting and strategic planning for the information security functionRequired Experience & QualificationsMinimum 5 years’ experience in Information Assurance or Cyber Security, ideally in a regulated UK sectorStrong technical knowledge across cybersecurity, software development, and IT systemsFamiliarity with frameworks such as NIST CSF, OWASP, and general security architectureRelevant qualifications (e.g. CISSP, CISM, or similar) – in progress or completedStrong understanding of cyber risk management, data protection, and control assuranceCapable of working independently and handling multiple prioritiesDesirableExposure to SOC2, ISO 27001, PCI DSS, or GDPR frameworksHands-on experience with cybersecurity tools and platformsPrevious involvement in cyber incident response teams