Information Security Manager


Richmond, GB / Greater London, GB
  • Job Type: Full-Time
  • Function: IT
  • Post Date: 04/13/2021
  • Website:
  • Company Address: NOTHS House, 63 Kew Road, Richmond, London TW9 2NQ, GB

About Notonthehighstreet

We are notonthehighstreet. 'The home of thoughtful gifts'​ and the leading curated modern marketplace connecting the best small creative businesses, with the world. We have gained the trust and loyalty of our customers through offering an alternative to the High Street: a curated product selection with unique designs, high-quality craftsmanship and inspiring stories about the people who make them.
Founded in 2006 by Holly Tucker MBE and Sophie Cornish MBE, we connect 3 million customers to 5000 creative small businesses (who we call Partners) from across the country. We employ circa 160 staff who are based in our headquarters in Richmond (aka ‘Silicon-Upon-Thames’).

Job Description

We are notonthehighstreet. 
We’re home to 5,000 phenomenal small creative businesses that we are proud to call our Partners.  But, now more than ever, this community needs our support.  So we’re doing all we can to shine a light on these dynamic entrepreneurs, waving the flag for small businesses and generally championing their socks off.
On top of our brilliant Partners, products and customers (not to mention our incredible team who have been busy beavering away from home since March), the last 12 months has seen  great progress with our tech platform and customer experience. We are now looking to build on this momentum to drive our business to the next level. And that’s where you come in.
What we need
We are looking for an Information Security Manager who can look after IT security risk and security incidents, and will lead the transformation of our information security policies and practices.
You will be proactive in working with senior business and technology leadership, and various engineering and operations teams to ensure security has appropriate focus. You will champion security and share best practice by providing training, coaching and support. You will provide confidence to stakeholders, but also convey any risks we have in a realistic way. 

Some of the things you'll be doing

    • Work with senior business and technology leadership to assess existing cyber/information security position; and to develop, manage and iteratively deliver enhancements to our policies and procedures
    • Coordinate activities relating to legal and cyber/information security compliance best practices, such as GDPR, NIST, PCI-DSS
    • Collaborate with Legal team and Risk Management board in the management of operational risk register and recommends appropriate actions and assists with mitigation planning
    • Lead date-to-day operational security and incident resolution
    • Own governing policies for security tools, responding to events and evaluating data to enable reporting and subsequent analysis
    • Work with internal security, operations and engineering teams and 3rd party suppliers to assess and manage technology security risks for new and existing solutions

Some key skills + experience you’ll need

    • Confident and engaging presence with strong stakeholder management and project delivery skills
    • Solid knowledge of ISO27001/2, COBIT, NIST 800-53 and similar controls frameworks and associated cyber/information security practices; with practical experience of successfully rolling them out into an organisation
    • Understanding of the latest technologies, trends and emerging best practices in cyber/information security space
    • Experience of managing security incidents and IT security risks
    • Experience of modern cloud technologies and service providers would be desirable; specifically AWS platform, Containers and Serverless, Java, Node JS, relational and NoSQL DB’s
Our perks
It’s important to us that our people are well looked after, which is why we offer everyone BUPA healthcare, life insurance and a pension plan. Because having a break is important for your physical and mental wellbeing, our holiday allowance is 25 days (plus bank holidays) AND your entitlement increases an extra day for every 2 years you spend with us.
The team spirit at NOTHS House is legendary, and while we all miss the in-office massages, hair cuts and the abundance of free fruit, we’ve taken to our virtual world with gusto and bring the team together regularly for socials and of course the odd Zoom quiz!
We endeavour to support our people to make sure work….well, works for them. And the pretty big issue of the recent global pandemic has propelled us into working more flexibly than ever before. With the office closed until further notice (at least until government social distancing advice has changed), we’re using the lessons learnt over this period to  evolve our approach to flexible working whilst ensuring we all still get together as one #teamnoths
Diversity and Inclusion
Everyone’s welcome at notonthehighstreet – whoever they are, wherever their background. 
As part of your application you’ll be asked to complete a demographic survey to help us learn more about who wants to work with us. It’s completely optional (but really appreciated) and it’s 100% anonymous. We’ll only use the information to help us figure out how to make our team even more inclusive and attract more brilliant people to join us, with the help of our cross-team Diversity Champions to drive progress.
Apply to join #teamnoths
We’d love to hear more about you, your experience and why you’d like to join our team.
For now, our recruitment and induction processes are fully remote, taking advantage of the wonders of modern-day technology. If you are successful in your initial application we’ll explain more about next steps, as this can vary slightly from role to role. Good luck!

Related Jobs

Senior Software Engineer - Java

Notonthehighstreet - Greater London, GBRichmond, GB

Software Engineer - Java

Notonthehighstreet - Greater London, GBRichmond, GB

Tech Lead - Java

Notonthehighstreet - Greater London, GBRichmond, GB

Product Manager - Commerce

Notonthehighstreet - Richmond, GBGreater London, GB

QA Lead

Notonthehighstreet - Richmond, GBGreater London, GB
Disclaimer: Local Candidates Only
This company does NOT accept candidates from outside recruiting firms. Agency contacts are not welcome.