Wanted: Information Security Officer

We’re currently recruiting for an Information Security Officer to join the team at Trace Solutions. You will lead the organisation’s cybersecurity strategy and operations, protecting digital assets, data, and infrastructure.

What You’ll Do

• Security Strategy Development – Create and maintain comprehensive information security policies, standards, and procedures aligned with industry frameworks (Cyber Essentials, ISO 27001).
• Risk Management – Conduct regular security risk assessments, vulnerability analyses, and maintain the information security management system (ISMS).
• Threat Detection & Monitoring – Implement and monitor SIEM systems, develop threat intelligence capabilities and threat hunting programmes.
• Incident Response Leadership – Lead response activities for security breaches, conduct forensic analysis, and coordinate with external agencies when required.
• Infrastructure Security – Oversee firewalls, intrusion detection systems, endpoint protection, and identity/access management systems.
• Cloud & Network Security – Ensure secure configuration of cloud services, hybrid environments, and implement encryption standards.
• DevSecOps Integration – Coordinate with DevOps teams to implement secure CI/CD pipelines and development practices.
• Disaster Recovery Planning – Develop and maintain DR/business continuity plans, conduct testing, and manage backup strategies.
• GDPR & Data Protection Compliance – Ensure compliance with GDPR, UK Data Protection Act, conduct Privacy Impact Assessments.
• Third-Party Risk Management – Conduct security due diligence for vendors, manage risk assessments and vendor monitoring.
• Physical Security Coordination – Monitor CCTV systems, coordinate access control, and manage visitor/contractor procedures.
• Security Training & Awareness – Deliver cybersecurity training, conduct phishing simulations, and create security documentation.
• Business Development Support – Provide security expertise for tenders, respond to client security questions, and support pre-sales.
• Budget & Performance Management – Manage security budgets, develop KPIs, and provide cost-benefit analyses for investments.
• Stakeholder Reporting – Prepare security reports for senior management, present to board committees, and manage vendor relationships.

What You’ll Bring

Technical Skills

• Proficiency with security tools (firewalls, SIEM, IDS/IPS, endpoint protection).
• Understanding of operating systems security (Windows, Linux, macOS).
• Knowledge of network protocols, encryption, and PKI.
• Experience with cloud security controls and configurations.
• Database security and application security principles.
• Risk assessment and threat modelling methodologies.

Qualifications & Experience

• Minimum 5 years’ experience in cybersecurity, information security, or related field.
• Professional security certification (CISSP, CISM, CISA, or equivalent).
• Understanding of network security, firewalls, and intrusion detection systems.
• Experience with security monitoring tools, SIEM platforms, and incident response.
• Knowledge of cloud security (AWS, Azure, or Google Cloud).
• Understanding of data protection regulations (GDPR, UK DPA 2018).
• Demonstrated experience in security risk assessment and management.

Personal Qualities

• Attention to detail and ability to identify security weaknesses.
• Strong problem-solving and analytical thinking abilities.
• Excellent written and verbal communication skills for technical and non-technical audiences.
• A collaborative and supportive team player.
• Project management and vendor relationship management experience.

Salary: negotiable, subject to experience.

Why Join Us?

We are an employee-owned PropTech company with unparalleled experience in property management solutions. Based in Clerkenwell, London, we support around 250 organisations with our TRAMPS, BlueBox, o6ix, and Estateman products.

With 60 employees, we are one of the leading innovators in our sector, developing sophisticated tools to automate processes, analyse information, and integrate with other best-of-breed applications. Our web-based Mojo brand and web apps have driven significant growth, with more expansion expected in the coming years.

Join us and be part of a company that values expertise, innovation, and collaboration.

Don’t tick every box? No problem – if you believe your skills and experience would make you a valuable addition to our team, we’d still love to hear from you. Potential candidates should drop us a line at this email address.

Strictly no agencies.