Great that you’re thinking about a career with BSI!
Job Title: Information Security Assurance Manager EMEA
Location: UK or EMEA (hybrid)
Type: Full-time, permanent
About the role:
At BSI, we help organisations worldwide become more resilient, sustainable, and trusted. Now, we’re looking for an Information Security Assurance Manager to strengthen our global security posture, with a focus on the EMEA region.
Reporting to the Head of Information Security Assurance & Compliance, you’ll be a key player in managing and evolving our ISO 27001-certified Information Security Management System (ISMS). From leading assessments and internal audits to championing risk management and compliance, your mission is to ensure security standards are not just met but exceeded.

Responsibilities:

• Lead ISMS implementation and improvement efforts across EMEA.
• Promote best practices in information security and data protection with regional stakeholders.
• Conduct internal audits and assessments, track remediation, and support external audits.
• Identify and manage risks, ensuring controls are effective and up to date.
• Maintain ISMS documentation, including risk registers, BCPs, and asset inventories.
• Ensure compliance with ISO 27001, PCI-DSS, Cyber Essentials, NIST, and GDPR.
• Deliver security awareness training, tailored workshops, and policy updates.
• Support vendor risk management, including third-party assessments and reviews.
• Stay informed on the latest threats, recommending appropriate mitigation strategies.

To be successful in the role, you will have:

• Solid experience implementing and/or maintaining an ISMS, ideally aligned with ISO 27001.ISO 27001 Lead Auditor certification is advantageous but not essential – equivalent practical experience will be considered.
• Strong knowledge of information security frameworks, risk management, and compliance.
• A collaborative, proactive approach with the ability to influence at all levels.
• Familiarity with GRC tools, vendor risk assessments, and incident response.
• Understanding of legal and regulatory requirements, especially GDPR.
• Excellent communication and documentation skills.
• Has the skill to influence through persuasion in a formal context.

BSI offers a competitive total reward package, an independent and varied job in an international environment, flexible working hours, and ongoing training and development.

• Please note: BSI are unable to provide visa sponsorship for this vacancy

Do you believe the world deserves excellence?
We are proud to be the business improvement company for other organisations to become more sustainable and resilient and finally to inspire trust in their products, systems, services, and the world we live in.
Headquartered in London, BSI is the world’s first national standards organization with more than 100 years of experience. We are a global partner for 86,000 companies and organizations in over 193 countries, offering development, auditing, certification, and training services, including innovative software solutions and cyber security expertise for all industries: from aerospace and automotive to food, construction, energy, healthcare, IT and trade sectors. Incorporated by Royal Charter, we’re truly impartial, and home to the ultimate mark of trust, the Kitemark.
Through our unique combination of consulting, training, assurance and regulatory services we bring solid and broad knowledge to every company.
If you want to contribute to this inspiring challenge, bring your open and enthusiastic mindset to our dynamic team, apply now and become part of the BSI family!
D&I Policy
BSI is committed to ensuring the diversity of our workforce reflects that of our clients and the communities in which we operate. Our goal is to create a sense of belonging for all employees by providing opportunities to develop, grow, and engage with our global organization all while having fun doing great work. BSI is a community where everyone can thrive.
If you require any reasonable accommodations to be made on account of a disability or impairment throughout out our recruiting process, please inform your Talent Acquisition Partner.

LI-LL1 #LI-Hybrid

Our Excellence Behaviours: Client-centric, Agile, Collaborative. These three behaviours represent how we do things at BSI. They help us ensure that BSI is a great place to work and a highly successful business.
BSI is conducting face-to-face interviews where appropriate and possible. If you are invited to a face-to-face interview but feel more comfortable with conducting the interview virtually, please speak to a member of our recruitment team

Responsibilities:

• Lead ISMS implementation and improvement efforts across EMEA.
• Promote best practices in information security and data protection with regional stakeholders.
• Conduct internal audits and assessments, track remediation, and support external audits.
• Identify and manage risks, ensuring controls are effective and up to date.
• Maintain ISMS documentation, including risk registers, BCPs, and asset inventories.
• Ensure compliance with ISO 27001, PCI-DSS, Cyber Essentials, NIST, and GDPR.
• Deliver security awareness training, tailored workshops, and policy updates.
• Support vendor risk management, including third-party assessments and reviews.
• Stay informed on the latest threats, recommending appropriate mitigation strategies

To be successful in the role, you will have:

• Solid experience implementing and/or maintaining an ISMS, ideally aligned with ISO 27001.ISO 27001 Lead Auditor certification is advantageous but not essential – equivalent practical experience will be considered.
• Strong knowledge of information security frameworks, risk management, and compliance.
• A collaborative, proactive approach with the ability to influence at all levels.
• Familiarity with GRC tools, vendor risk assessments, and incident response.
• Understanding of legal and regulatory requirements, especially GDPR.
• Excellent communication and documentation skills.
• Has the skill to influence through persuasion in a formal context