Job Summary

The NCC is the UK’s innovation partner! We’re supporting a range of interesting new projects in the defence sector and are hiring for an additional Information Security Manager to join our expanding secure operations team.

Location & Working Pattern

Bristol based with Hybrid working – 2 days on site, 3 days home.

Salary

£54,102 to £67,056 per annum (experience dependent).

Security Clearance

You will be required to undertake government security clearance if successful. Please only apply if willing to undertake clearance process.

Closing Date

25th November 2025 – the advert may be withdrawn early if required.

Responsibilities

• Review Security Aspect Letters (SALs) and assess compliance.
• Ensure policies, processes and procedures meet SAL requirements and secure operating levels.
• Ensure SAL conditions, including security clearance and nationality constraints, are satisfied.
• Collaborate with IT to apply Secure By Design principles and governance.
• Collaborate with Engineering and Operations to support secure technical and operational activities.
• Provide education, training and briefings to NCC personnel, contractors and visitors to promote good security practice.
• Document and manage security risks and mitigations.
• Manage security incidents and near misses, and implement control measures or improvements.
• Ensure information security conditions are flowed down to contractors and subcontractors.
• Act as Deputy Facility Security Controller and Deputy Personnel Security Controller.
• Report any breach of personnel security immediately in accordance with Government and contractual requirements.
• Support the Security Controller with accreditation matters and facilitation of visits and inspections by government or contracting authorities.
• Support recording and management of classified assets in accordance with established procedures and asset registers.
• Work with Delivery, Sector and Capability teams to consider security from project initiation through to business‑as‑usual.

Qualifications

• Experience in an Information Security Manager or equivalent role.
• Existing Government Security Clearance OR willingness to undertake. We consider those without existing clearance as long as criteria to apply are met.
• Experience with MOD standards relating to information security.
• Experience working at UKG classification levels.
• Knowledge of Secure By Design principles and methodology.
• Sound knowledge of information security risk management and a working knowledge of cybersecurity technologies.
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, NIST 800‑53 and NIST Cybersecurity Framework.
• Desirable: Relevant accreditations including Cyber Essentials, Cyber Assured, etc.

Personal Qualities

• High integrity and the ability to handle confidential matters professionally.
• Appropriate judgement and maturity.
• Good communication skills, analytical skills and the ability to work effectively with a range of people.

Benefits

• Hybrid and flexible working patterns.
• Annual salary reviews.
• Company‑paid private medical insurance.
• Up to 12.5% employer pension contribution.
• Great people and honorary staff status at the University of Bristol.
• Focus on wellbeing, EDI and learning and development.

How to Apply

If you’re unsure whether you should apply, feel free to reach out to the recruitment team – [email protected].