Information Security Manager (Defence)-MyTechnology

Information Security Manager

Birmingham, Solihull (Hybrid)

Up to £58,000 + Aligned company benefits

Must be able to achieve and maintain formal UK Security Clearance (SC)

About us

At Serco, we unite the right people, technology, and partners to solve some of the world's most pressing and complex challenges. From defence and space to healthcare, justice, transport and beyond, our UK operations deliver critical services across government sectors—driven by expertise in service design, programme management, engineering, and more.

About the role

As an Information Security Manager, you’ll take operational ownership of information security for new Defence contracts, ensuring compliance with MOD Secure by Design (SbD) standards and data protection legislation. You’ll oversee security arrangements across Serco, its partners, and subcontractors, maintaining rigorous audit and assurance processes. This role is key to ensuring secure contract delivery, managing security incidents, and preparing for evolving MOD requirements. You’ll work closely with Data Protection Champions, senior leaders, and Defence stakeholders to uphold the highest security standards across the business

Key Accountabilities

• Lead information security management across new Defence contracts, ensuring compliance with MOD standards such as Secure by Design, DefStan 05-138, and HMG/NCSC guidance.
• Conduct risk assessments and gap analyses using frameworks like NIST SP800 and ISO 27001, developing action plans to address deficiencies.
• Oversee security assurance activities, including incident response, investigations, and engagement with external audit providers (e.g., CHECK pen-tests and security health checks).
• Support project and design phases with security advice on technical, procedural, personnel, and physical controls, aligned to contractual requirements and MOD certifications.
• Establish and manage internal and external Security Working Groups to drive coordinated security efforts with Serco teams, partners, and suppliers.
• Provide guidance on data protection compliance, working closely with Data Protection Champions and promoting awareness across the Defence Business Unit.
• Deliver security awareness training and foster a proactive security culture within contracts, maintaining certifications like Cyber Essentials Plus and ISO 27001.

Skills & Experience

• Comprehensive knowledge of and experience with current MOD policies and standards (e.g., Secure by Design, JSP 440, DefStan 05-138 / DCPP)
• ISO27001 Lead Implementer / Auditor
• CISSP or CISM certified
• Data Protection Compliance knowledge and privacy certifications
• Risk management knowledge utilising recognised frameworks, such as NIST
• Experience in the production and delivery of security awareness training
• A willingness to travel to Serco and MOD sites is necessary for the effective delivery of this role.
• The Infosec Lead (Defence Growth) must be able to achieve and maintain formal UK Security Clearance (SC

Why Serco:

Serco’s purpose is to impact a better future - we bring together the right people, the right technology, and the right partners to create innovative solutions that deliver positive impact and address some of the most urgent and complex challenges facing governments globally. Our services are powered by more than 50,000 colleagues working across multiple sectors including defence, space, migration, justice, healthcare, transport, and customer services in four regions: UK & Europe, North America, Asia Pacific, and the Middle East.

In this position, your work is vital to the business, in terms of decisions and growth. You will gain a world of opportunity working for a globally operating business delivering essential services across 5 vital sectors, personal growth, achievement, and development won’t be hard to find. You'll also work with great people. You’ll find yourself working in a highly motivated, supportive environment where no two days are the same, with experienced colleagues who strive for excellence.

What we offer:

• 25 days annual leave plus bank holidays.
• Annual leave purchase scheme.
• Up to 6% contributory pension scheme
• Flexible working options.
• Free onsite parking.
• Serco discounts which include cinema, merlin entertainment and online shopping discounts, and discounts on mobile phone plans and leisure centre memberships.
• A range of benefits to support the health and wellbeing of you and your family such as Employee Assistance Programme, Health Cash Plans, free flu jabs and more.
• A wealth of career development training to suit your future aspirations. These range from role specific training, leadership coaching, formal study and much more to support you to build your career with Serco.
• A safe and supportive culture.
• A company passionate about diversity and inclusion.