Information Security Manager

Who are we:

In 2019, our founders were working as engineers solving complex cross domain problems within government organisations

TwinStream was formed to consolidate their collective expertise and experience into one business, providing technical excellence and exceptional service to their clients. We have teams working both on-site with clients and remotely from home.

 

Details:

Salary: £65,000 to £75,000 

Location: Hybrid working in Bristol 

Security Clearance: Eligible for DV clearance 

 

About the role:   

The Security Manager will be responsible for maintaining and enhancing our ISO 27001 Certification and will be the focal point for all security requirements within the organisation. Working closely with internal and external stakeholders, this role will ensure that TSL’s security posture aligns with best practices, compliance standards and contractual obligations. The successful candidate will also be responsible for driving security governance, advising on security requirements, and ensuring the smooth running of security-related projects.  

 

Key Responsibilities:  

• Ensure TSL’s continued compliance with ISO 27001, Cyber Essentials, Cyber Essentials + and DCPP CSM, working closely with relevant teams to implement and maintain security controls.  

• Lead the implementation and maintenance of information security policies and procedures to address security risks and compliance requirements.  

• Provide security-related subject matter expertise to help identify, assess, and mitigate information security risks, with an understanding of ISO 27005 and NIST Cyber Security Framework (CSF).  

• Coordinate with internal and external audit representatives to ensure security governance is being followed.  

• Collaborate closely with internal teams, including the Senior Leadership, Finance and People Teams and IT to ensure the successful adoption and execution of information security policies and standards.  

• Lead and facilitate security policy training and awareness programs to drive a strong security culture.  

• Lead incident response and management efforts, providing expertise in handling security incidents efficiently.  

• Align ISO 27001 standards with Government frameworks, such as the Defence Cyber Protection Partnership’s Cyber Security Models (v3 and v4), ensuring full compliance.  

• Respond to DCPP evidence requirements, oversee CIP remediation activities, and build policies and procedures as necessary, ensuring continued compliance through time. 

• Engage with project Security Assurance Coordinators and support the development of contractual and projects-specific documentation, with an understanding of Secure by Design (SbD) Assurance activities.  

• Oversee the implementation of protective security controls at the TwinStream premises in North Bristol and take an ongoing lead in setting and maintaining security policies and processes there.  

• Serve as the key advisor to internal and external stakeholders with regards to assurance with Government Protective and Personnel Security standards and guidelines.  

 

Desired Skills:  

• Ability to work effectively in a flexible, fast-paced environment.  

• Must have a focus on accuracy and precision, with no tolerance for overlooking security-related details.  

• Proactively challenge business approaches to ensure security-centric decisions are made.  

• Demonstrated experience in managing security incidents and leading incident response teams.  

• Ability to present and be the focal point for security matters across the business.  

• Experience in supporting the security controller role in various security frameworks.  

• Understanding of insider threat operational and governance requirements and experience in applying them.  

 

Qualifications:  

• CISSP (preferred but HIGHLY desirable), CISM, or CRISC.  

• ISO 27001 Lead Implementor.  

• Security Controller (DISA).  

• Technical Security Proficiency (CompTIA or similar).  

• Risk Management Proficiency (NIST or similar).  

 

  

There are many great reasons to join our team!  

Pension Plan  

Secure your future with our competitive pension plan that offers an 8% employer contribution.   

 Private Medical Healthcare  

Your health and well-being are our top priorities. Enjoy comprehensive private medical healthcare, which includes dental and optical care for you and your family.   

 Learning and Development  

Your career is in your hands. We empower you to take charge of your own development, giving you the autonomy to shape your growth. To support this, everyone receives an annual training budget of £1,000.      

Flexible Working  

We understand the importance of balancing work and life. Flexibility is not just a policy for us; it is part of our culture. We are passionate about helping you seamlessly integrate work with your home life.    

Electric Vehicle Scheme   

Drive sustainability forward with our electric vehicle leasing scheme. You can take advantage of this initiative through a convenient salary sacrifice program.    

Holidays   

Enjoy an annual leave of 25 days, plus bank holidays, allowing you to recharge and spend time on what matters most.      

Team Events  

We love celebrating our achievements! In addition to our quarterly meetings, you can look forward to our Christmas and summer parties—opportunities to relax, reflect, and have fun as a team.    

 Additional Benefits   

We provide life assurance for your peace of mind and a cycle-to-work scheme to support your health and sustainability goals.  

Further Information: 

To meet the security requirements of certain clients and industries we serve, any job offer will be contingent upon the successful completion of a security screening process. 

At TwinStream, we take pride in being an equal opportunity employer. We celebrate diversity and are committed to fostering an inclusive environment where all individuals are valued and respected. We welcome applications from qualified candidates regardless of race, religion, disability, age, sexual orientation, or gender.