×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Information Security Governance and Risk Manager

Job in Swindon, SN1, England, UK
Listing for: Cyber Security training courses
Full Time, Contract position
Listed on 2026-06-03
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 58589 GBP Yearly GBP 58589.00 YEAR
Job Description & How to Apply Below
Location: Swindon

Overview

Corporate Hub

Salary: £58,589

Band: UKRI Band F

Contract Type:
Open Ended – Permanent (Compressed hours & flexible working patterns available)

Hours:
Full-time (flexible working available)

Location:
Keyworth, Nottingham or Polaris House, Swindon
- Hybrid working available

Closing Date:
Sunday 14th June 2026

Step into the world where cutting-edge science meets robust information security. Protect the technology that powers groundbreaking discoveries and be part of the team that safeguards the future of Big Science. Here, you’ll collaborate with leading engineers, researchers, and technologists to tackle the most pressing security challenges in a fast-paced, innovative environment. Every day offers you the chance to defend vital data and systems, ensuring that the pursuit of scientific excellence continues securely and seamlessly.

Discover the difference you can make when you bring your expertise in information security to an organisation at the forefront of global research - working alongside some of the brightest minds and most advanced facilities in the world.

Security

As a minimum, due to the nature of this role, candidates must be eligible for clearance in line with UK National vetting guidelines and willing to undertake the process. Please indicate eligibility in the written submission. Candidates not meeting this level of clearance will not be considered.

The level of clearance required is security check.

About the role

The UKRI CIO Group plays a pivotal role in managing and optimising the organisations critical enterprise technical services that underpin and enable UKRI’s business capabilities. Within the group a team of Information Security Professionals support the delivery of modern, secure, resilient and scalable services across a larger federated team of Digital, Data and Technology professionals to deliver impact across the organisation and the wider UK research and innovation system.

Join us for this rare opportunity to apply your experience in information security governance, risk and assurance in a dynamic, fast-paced strategic role in an organisation at the heart of research and innovation in the UK. Managing the Information Security Governance, Risk and Assurance function your broad remit is to drive the implementation of our ambitious information security roadmap and support the UKRI Head of Information Security to mature our information security function.

You will lead UKRI’s cyber security risk, compliance and assurance activity for cloud and enterprise services (AWS and Azure). You will own the information security management system (ISMS) and accreditations (ISO 27001 and Cyber Essentials Plus), run the information security risk framework, and drive secure-by-design assurance for new and existing services. You will work across UKRI’s federated technology estate to set proportionate controls, monitor compliance, and provide clear, actionable risk reporting to senior stakeholders.

Your

responsibilities
  • Own and lead UKRI’s Information Security Governance, Risk and Assurance framework.
  • Own, operate and continuously improve the Information Security Management System (ISMS).
  • Provide end‑to‑end security assurance for cloud and enterprise services (AWS and Azure).
  • Define and maintain UKRI’s security policy and control framework.
  • Enable and support risk ownership across UKRI’s federated technology and business teams.
  • Develop and maintain meaningful security metrics, dashboards and management information.
  • Define, deliver and track a multi‑year security governance, risk and assurance roadmap.
  • Lead security assessment, testing and remediation activity.
  • Provide ongoing oversight of supplier and third‑party security risk.
  • Establish and maintain enterprise visibility of assets, services and data risk context.
  • Provide governance leadership across incident management, people, suppliers and assurance partnerships.
  • Ensure governance‑level oversight of significant security incidents.
Personal specification

The below criteria will be scored during Shortlisting (S), Interview (I) or both (S&I).

Applicants will be able to demonstrate skills in line with the cyber security risk manager roles using the Government…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search