Cybersecurity Specialist UKI

Information Security Management System Lead UKI

We’re looking for an experienced and influential Information Security Management System Leader to lead and continually strengthen our Information Security Management System across the UK&I Zone.

The Information Security Management System Lead (ISMS) is accountable for establishing, operating, maintaining, and continually improving the organization’s ISMS in line with ISO/IEC 27001, NIS2, CSRB, Cyber Essentials Plus, and applicable regulatory, contractual, and customer requirements. The role provides leadership for information security governance, risk management, and compliance across the UK&I Zone.

This is a career‑defining opportunity for those passionate about ISO 27001 governance, cyber resilience, and working across complex digital environments.

We would like this role to be based in Leeds, Warrington, London or Scarborough. This will be a hybrid role with 2–3 days a week on site.

• Ownership of our ISO/IEC 27001‑aligned ISMS
• Information security governance, policies, and risk management
• Compliance with NIS2, CSRB, Cyber Essentials Plus, GDPR and customer requirements
• Certification activities: ISO 27001, CE+ audits, internal audits, reviews
• Security controls, incident governance & assurance
• Cross‑functional collaboration with IT, engineering, cyber, privacy & global teams
• Organisation‑wide security awareness & culture programmes
• Reporting of ISMS, NIS2, risk KPIs/KRIs to senior leadership

• Proven experience leading an ISO/IEC 27001‑certified ISMS.
• Strong knowledge of information security, governance, risk, and compliance.
• Experience managing NIS2 or similar regulatory cyber frameworks.
• Experience owning Cyber Essentials Plus certification.
• Experience managing audits and customer security assessments.
• ISO/IEC 27001 Lead Implementer or Lead Auditor (highly desirable).
• CISSP, CISM, or equivalent (desirable).
• Relevant degree or equivalent professional experience.

Regulated‑industry experience, NIST/SOC2 knowledge, and certifications such as ISO 27001 Lead Implementer/Auditor, CISSP, or CISM.

• Leadership role in shaping and implementing enterprise‑wide security strategies
• Opportunity to work with cutting‑edge security technologies and frameworks
• Professional growth through continuous learning and development in cybersecurity
• Collaborative environment with exposure to diverse security challenges
• Impact‑driven role protecting critical business assets and intellectual property
• Work across global cyber, IT, engineering & digital teams
• A chance to deliver real impact in a high‑visibility role

Schneider Electric aspires to be the most inclusive and caring company in the world, by providing equitable opportunities to everyone, everywhere, and ensuring all employees feel uniquely valued and safe to contribute their best. We mirror the diversity of the communities in which we operate, and ‘inclusion’ is one of our core values. We believe our differences make us stronger as a company and as individuals and we are committed to championing inclusivity in everything we do.

At Schneider Electric, we uphold the highest standards of ethics and compliance, and we believe that trust is a foundational value. Our Trust Charter is our Code of Conduct and demonstrates our commitment to ethics, safety, sustainability, quality and cybersecurity, underpinning every aspect of our business and our willingness to behave and respond respectfully and in good faith to all our stakeholders.

You can find out more about our Trust Charter here.

Schneider Electric is an Equal Opportunity Employer. It is our policy to provide equal employment and advancement opportunities in the areas of recruiting, hiring, training, transferring, and promoting all qualified individuals regardless of race, religion, color, gender, disability, national origin, ancestry, age, military status, sexual orientation, marital status, or any other legally protected characteristic or conduct.