Salary £48,414 - £52,405
Hybrid working (50/50)
Permanent, full-time, based in Wallingford Oxfordshire

About the opportunity

Are you ready to lead the future of cyber and information security at a world‑renowned research organisation?

We’re looking for a visionary Information Security Manager to join our talented, cross‑functional IT team at our Head Office in Wallingford. This is your opportunity to make a lasting impact – protecting UKCEH’s data, systems, and reputation while shaping a culture of security that empowers scientific discovery.

In this hands‑on leadership role, you’ll report to the Head of IT and take charge of both strategic governance and technical excellence. You’ll lead a small, dedicated team, including mentoring a motivated Information Security Analyst undertaking day‑release studies. Your ability to coach, guide, and inspire others will be key to building capability and embedding security awareness across every level of the organisation.

You’ll work closely with scientists, technologists, and operational teams to ensure security is not just a technical requirement, but a shared responsibility. Your calm approach to handling major security incidents, structured response processes, and clear communication will reassure stakeholders and strengthen our resilience.

If you’re a strategic thinker with strong line management experience, excellent interpersonal skills, and a passion for nurturing talent, we’d love to hear from you. Join us and lead with insight, empathy, and purpose, because at UKCEH, security is not just about protection, it’s about enabling excellence.

Key responsibilities

• Lead the UKCEH Information Security programme, ensuring it is responsive, innovative, and cost‑effective
• Manage a small Information Security team and oversee the budget
• Develop and maintain information security policies, standards, procedures, and guidance
• Provide strategic threat management, including risk assessments, incident management, and internal reporting
• Promote security awareness through training programmes for technical and non‑technical staff
• Assess and recommend technological upgrades and improvements to the information security environment
• Communicate security goals and new programmes effectively across departments

This role is ideal for someone who sees information security as a business enabler – someone who can influence behaviour, manage resistance, and advocate for controls that align with operational needs, especially in complex environments like academic and research settings. You’ll be comfortable navigating GDPR compliance, responding to data breaches, and proactively identifying overlooked threats. Your process‑oriented mindset will help refine workflows that enhance security without compromising productivity.

Success in this role also requires strong interpersonal skills, including active listening and thoughtful questioning, as well as excellent written and spoken communication. Above all, you’ll demonstrate a commitment to UKCEH’s values of excellence, integrity, and teamwork.

Qualifications

• Previous proven experience working in an Information Security Management or equivalent role
• A professional security qualification (e.g., CISSP, CISM) or relevant degree
• Good knowledge of industry standard frameworks such as Cyber Essentials, GDPR, ISO27001, and NIST
• Strong technical background in Cloud, Data Analytics, Security Technologies, and Application Security
• Demonstrable experience managing and delivering Information Security leadership within business and technology‑led change projects
• Proven experience identifying and articulating Information Security risks and can handle mitigating controls, including vulnerability and threat intelligence knowledge
• Knowledge of enterprise security design, with experience in Microsoft security stack, Amazon Cloud Services, MS Azure, Windows, Linux, and leading ERP solutions
• The ability to think critically about process and procedures and to adjust consistently as needed
• Ability to interact confidently across UKCEH and explain complex concepts in simple, understandable terms

Benefits

• 27 days annual leave (rising to 29 days after 5 years’ service) plus 3 days for Christmas closure
• 10% employer pension contribution
• Flexible and hybrid working arrangements (role dependant)
• Peer reward and recognition scheme
• Dental insurance, gym/fitness discounts, retail discount portal
• Enhanced maternity and paternity leave
• 24‑hour, 365‑day support with physical, mental, social, health or financial issues and much more…

Application process

Apply today! If this opportunity resonates with you and aligns with your personal career goals, the team would love to receive your application. Please apply by submitting your CV along with a covering letter that highlights any qualifications, skills or experience you believe are relevant to this role.

At UKCEH, we are committed to fostering an inclusive and equitable workplace where everyone—regardless of background, identity, ability, or circumstance—has the opportunity to thrive. As a Disability Confident employer, we actively encourage applications from neurodivergent candidates and those with disabilities. We are happy to provide any adjustments or support you may need throughout the application process—please don’t hesitate to reach out. So, if you’re excited about this role but your experience doesn’t align perfectly with every requirement, we’d love to hear from you anyway. You may be just the right fit for this role or another within our wider team.

Please note: Unfortunately, we are unable to offer visa sponsorship for this role and this does not qualify for endorsement to support a Global Talent Visa application. If you are considering pursuing self‑sponsorship, please indicate this in your application so we can take it into account during the recruitment process.