Information Security Manager

London, UK | Job Posted 05/05/2017

Thomsons Online Benefits is a market leader in innovative technology and consultancy services related to total reward and flexible benefit programmes. Client companies include some of the world’s best known brands across financial service, e-commerce and business services. With offices in London, Romania, and Singapore, the company employs in excess of 500 staff with a turnover in the region of £35M.  Regularly appearing in the Sunday Times Tech 100 listing, Thomsons Online Benefits is a rapidly growing and exciting company with global ambition and can provide both a challenging and rewarding career.



 What you will be doing:

  • Overall responsibility for the management of Information Security within the business;

  • Responsible for maintaining ISO 27001: 2013 Certification across our global offices;

  • Responsible for reporting information security compliance and risk to Top Management within the business;

  • Responsible for Information Security incident management and remediation across our global offices;

  • Responsible for managing the Information Security pre-sales and RFP process;

  • Responsible for managing the review of Information Security requirements as part of the contractual process;

  • Responsible for managing the Application and Infrastructure Penetration testing process;

  • Responsible for liaising with internal Development, Infrastructure, Architecture and Product teams in relation to information security threats, vulnerabilities and recommending mitigations.


We are looking for a PINK person with:

  • Excellent verbal and written communication skills;

  • Experience of implementing and maintaining ISO 27001 Certification within a Global technology business;

  • Experience of driving Information Security initiatives within a global business;

  • Experience in managing Information Security reviews conducted by FTSE 100 FS and Technology organisations;

  • Integrity and attention to detail;

  • Experience in making Application and Infrastructure enhancements to mitigate Risk;

  • Ability to mentor and develop the Information Security department;

  • Flexible attitude, and an ability to perform under pressure;


Qualifications (Required):

  • CISSP;

  • CISM;

  • ISO 27001: 2013 Lead Implementer;

  • ISO 27001: 2013 Lead Auditor;


Qualifications (Desirable):

 MSc in Computer Science related discipline;


What you can expect from us:

  • Being a part of a global and successful, but still fast growing company.

  • An open, fail-friendly and fun environment.

    We reward our people for living our values and contributing to our business through a variety of benefits and perks:

  • Birthday day off.
  • Yoga, Zumba and fitness classes with a personal trainer
  • Free fruit in every office - yes, we all love cake – and there are many talented Thomsons bakers –but we want to encourage you towards your 5-a-day too!
  • Matching charity contributions, charity days off and Pay it Forward charity challenges
  • A spending account for you to spend on the things you decide are important
  • Pension, Life and medical insurance

 And the list goes on!