IT Manager - Cyber Defence

About the Role

The Cyber Security Manager for Cyber Defence will lead the organisation’s proactive defence strategy across four specialist pillars – Pen Testing & System Hardening, Communication Security, Web Security and Cloud Security. This senior role is accountable for designing and delivering a defence‑in‑depth programme that hardens the attack surface and achieves measurable risk reduction aligned to Zero Trust. The manager will oversee a high‑performing team of specialists, drive continuous improvement and protect the organisation against evolving threats while influencing strategic decisions and championing a security‑first culture across all business units. • Define and execute Cyber Defence strategy aligned with business objectives, regulations and risk appetite. • Lead, develop and inspire a high‑performing cyber defence team. • Champion Zero Trust principles and embed defence controls across platforms. • Partner with SOC, platform owners, architecture and product teams for early threat detection and rapid remediation. • Ensure audit readiness for Cyber Essentials, ISO and other regulatory requirements. • Develop and enforce security policies, standards, reference architectures and governance reporting. • Maintain the organisation’s cyber risk register and drive incident response for exploited vulnerabilities. • Coordinate post‑incident hardening and threat‑informed control uplift. • Serve as primary cyber liaison for senior leaders and cross‑functional teams, providing actionable insights. • Establish and govern penetration testing programme, secure configuration baselines and remediation of findings. • Implement advanced email, messaging and collaboration security controls and cryptographic standards. • Define and enforce cloud‑native security controls, compliance frameworks and cloud incident readiness.

Key Responsibilities

• ▸zero trust
• ▸pen testing
• ▸cloud security
• ▸incident response
• ▸security controls
• ▸risk register

What You Bring

Close collaboration with IT, engineering, product, compliance and risk teams is essential to embed cyber defence into enterprise architecture and service operations. The role also focuses on building a diverse, inclusive and high‑performing security function, nurturing talent, fostering innovation and creating an environment where people feel supported, empowered and valued. • Demonstrate a proactive, innovative mindset with continuous improvement of security controls. • Proven leadership in cyber security, managing teams and delivering strategic initiatives. • Deep knowledge of secure configuration, vulnerability management and quality assurance processes. • Experience with governance, compliance and regulatory frameworks such as ISO 27001, NIST and GDPR. • Desirable: certifications (CCSP, CISSP, CISM) and hands‑on experience with tools like Tenable, Microsoft Defender, Zscaler, ServiceNow. • Desirable: familiarity with cloud platforms (Azure, AWS, GCP) and CSPM/identity‑access management. • Desirable: experience in phishing simulations, vulnerability assessments, penetration testing and security automation (SOAR).

Requirements

• ▸cissp
• ▸tenable
• ▸azure
• ▸iso 27001
• ▸leadership
• ▸soar

Benefits

The company offers a hybrid working policy that allows employees to choose how they work most effectively to meet client, team and personal commitments, supporting well‑being, flexibility and trust.

Work Environment

Office Full-Time