Senior Manager Information Security

La Fosse has partnered with a well-established financial services organisation. They are looking for its first Information Security Senior Manager. This is a newly created role to lead and own the organisation’s security capability.

You’ll be the go-to person for all things security – managing policy and risk, aligning to ISO27001, CE+ and DORA. There’s strong executive buy-in, a healthy security budget, and a clear commitment to maturing the function.

The culture is collaborative, flat-structured and outcome-focused – a mix of long-term stability with start-up energy when it comes to technology.

What you'll be doing:

• Own and lead the security function, frameworks and controls across multiple entities
• Deliver CE+ certification and support alignment to ISO27001, DORA, and other regulatory requirements
• Provide oversight of security tools including Sentinel, Defender and Azure infrastructure
• Represent security in governance forums, and provide regular reporting to internal committees and stakeholders
• Work with internal teams and the MSP to ensure effective security operations and incident response.

What they're looking for:

• Experience leading or significantly contributing to an organisation’s security posture
• Strong understanding of GRC and regulatory frameworks (ISO27001, NIST, CE+, DORA etc.)
• Technical foundation, ideally in Microsoft Azure security stack
• Confident engaging with a wide range of stakeholders including engineers, MSPs, regulators, and senior management
• Someone who thrives in a non-corporate, collaborative, delivery-focused environment
• Certifications like CISSP or CISM preferred