TwinStream · 4 hours ago
Information Security Manager
United States
Full-time
Remote
Mid, Senior Level
£70K/yr - £80K/yrTwinStream is a company formed to provide technical excellence and exceptional service to clients in the government sector. They are seeking a hands-on Information Security Manager to manage information security incidents, maintain the Information Security Management System, and ensure compliance with relevant standards and regulations.
Computer & Network Security
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Manage information security incidents and security risks across the organisation
Own and maintain the Information Security Management System (ISMS), including creating and updating policies, procedures, and guidance
Ensure adherence to information security policies and standards
Drive a programme of continuous information security improvement
Embed and promote a positive security culture across the business
Ensure compliance with relevant certifications and regulatory requirements, including ISO 27001, Cyber Essentials Plus, UK GDPR/Data Protection Act, and MOD CSM v3 and v4
Plan and coordinate security audits (internal, external, customer, and penetration testing), managing evidence collection and tracking findings through to resolution
Provide information security expertise to projects, services, and business initiatives, including developing or contributing to Security Management Plans
Design and deliver information security training and awareness activities
Contribute to Business Continuity, Disaster Recovery, and internal audit activities
Act as the primary point of contact for information security across TwinStream
Qualification
Required
Proven experience in an Information Security Manager or similar role, including security incident management, risk management, security governance, and providing practical information security guidance
Experience embedding information security into the design, development, and delivery of software-based solutions, including secure development practices, cloud services, and integrated platforms
Strong understanding of recognised information security frameworks and certifications, particularly ISO 27001 and Cyber Essentials Plus
Good knowledge of relevant UK legislation and regulatory requirements
Comfortable working remotely (within the UK) in a flexible, fast-paced environment
Strong organisational skills with the ability to manage priorities effectively
Excellent written and verbal communication skills, with the ability to tailor messaging for different audiences
Relevant professional certifications such as CISSP (highly desirable), CISM, or ISO 27001 Lead Implementer/Auditor
Ability and willingness to undergo UK Security Clearance (minimum SC level)
Preferred
Experience in information security roles within the UK defence sector, national security sector, or other highly regulated industries
Existing UK Security Clearance (SC)
Familiarity with MOD security frameworks, including CSM v3 and v4, IPSA, and FSC
Experience using the Atlassian suite, particularly Jira
Demonstrated experience in managing security incidents and leading incident response teams
Ability to present and be the focal point for security matters across the business
Experience in supporting the security controller role in various security frameworks
Understanding of insider threat operational and governance requirements, and experience in applying them
Benefits
Pension Plan
Private Medical Healthcare
Learning and Development
Flexible Working
Electric Vehicle Scheme
Holidays
Team Events
Life assurance
Cycle-to-work scheme
Company
TwinStream
A Cyber Security Startup specialising in Cross Domain Solutions
Founded in 2018
51-200 employees
Funding
Current Stage
Growth StageCompany data provided by crunchbase