Cyber Security Manager

back arrowBack to jobs


Apply Now Arrow icon


Cyber Security Manager


Reference: BH-385c

Job Type: Contract

Duration: 3 months (with potential to extend)

Location: Hybrid working (London 3 days / up to 2 days remote)

Day rate: up to £800 per day (Outside IR35)



About The Client:

Our client is delivering a large-scale digital transformation programme within the UK transport sector, focused on consolidating multiple customer-facing platforms into a single, unified digital experience.

The programme brings together multiple stakeholders across the industry to modernise ticketing, improve user experience, and enable faster innovation across digital channels.

About The Role:

Our client is looking for a Cyber Security Manager to take ownership of security strategy and implementation across the programme.

This role will focus on embedding security into design, managing risk across systems and suppliers, and ensuring appropriate governance is in place as the platform evolves. You will work closely with technical teams and stakeholders to ensure security considerations are integrated into all stages of delivery.

Key Responsibilities

  • Ensure security considerations are embedded within system design and technical delivery.

  • Work with engineering and architecture teams to align on appropriate controls and safeguards.

  • Identify, assess, and manage security risks across systems, integrations, and data flows.

  • Provide clear guidance on mitigation strategies and risk handling.

  • Define and review security requirements for third-party services and vendors.

  • Evaluate supplier approaches to security and ensure alignment with programme expectations.

  • Establish and maintain security standards, controls, and assurance processes.

  • Support ongoing validation of security throughout development and delivery stages.

  • Engage with a broad range of stakeholders to align on security priorities and outcomes.

  • Contribute to readiness for operational security and incident response processes.

Essential Experience

  • Strong experience across application, infrastructure, and cloud security.

  • Solid understanding of modern web and API security risks and mitigation approaches.

  • Experience applying recognised security standards and frameworks, including ISO 27001, PCI DSS, UK GDPR, and other relevant UK or industry regulations.

  • Knowledge of core security principles such as least privilege and layered defence.

  • Experience performing structured risk assessments and threat analysis.

  • Background in defining security requirements within complex delivery environments.

  • Experience establishing governance, controls, and assurance processes.

  • Strong communication skills with the ability to influence both technical and non-technical stakeholders.

  • Ability to manage competing priorities in fast-paced, evolving programmes.

Desirable Experience

  • Experience within large, multi-stakeholder or regulated environments.

  • Exposure to programmes involving multiple vendors or integrated systems.

  • Familiarity with large-scale digital platforms or infrastructure programmes.

  • Experience supporting operational security frameworks and readiness planning.


Why join?

  • Opportunity to contribute to a large-scale, high-impact digital transformation programme.

  • Influence security strategy across a complex and evolving technical landscape.

  • Work within a collaborative, multi-disciplinary environment.

  • Competitive contract with potential for extension.


Apply Now Arrow icon