Information Security & Compliance Manager at Blue Matter - ScoutJobs - The AI-curated global job board
Skip to content
Blue Matter
Posted 12 days ago

Information Security & Compliance Manager

Blue MatterInformation Security & Compliance Manager

Requirements

5+ years in information security or GRC, Knowledge of GDPR and UK GDPR, Experience with ISO 27001 or SOC 2, Familiarity with Microsoft security stack, Relevant certification (CISSP, CISM, CISA, etc.), Based in the UK with right to work

Skills

Information SecurityGDPRISO 27001Microsoft 365GRC

About the role

Responsibilities

  • Own and run the end-to-end information security program, including governance for the internal AI platform, BlueCortex.
  • Define, maintain, and operationalize security policies, standards, and procedures.
  • Drive certification and attestation efforts for frameworks such as ISO 27001 and SOC 2.
  • Lead data protection efforts under GDPR and UK GDPR, including managing DPIAs and RoPAs.
  • Manage client security due diligence by completing security questionnaires and assessments.
  • Secure and govern the Microsoft 365 environment, including Entra ID, Defender, Purview, and Intune.
  • Oversee third-party and vendor risk management, specifically for SaaS and AI tools.
  • Lead incident response, including detection, investigation, and post-incident reviews.
  • Build and deliver security awareness training and phishing simulations for the firm.

Requirements

  • 5+ years of experience in information security or GRC, ideally handling sensitive client data.
  • Strong, practical knowledge of GDPR and UK GDPR.
  • Hands-on experience with ISO 27001 and/or SOC 2 implementation and audits.
  • Working familiarity with the Microsoft security stack (Entra ID, Defender, Purview, Intune).
  • Experience responding to client security assessments and questionnaires.
  • Relevant certification (e.g., CISSP, CISM, CISA, CRISC, or ISO 27001 Lead Auditor).
  • Based in the UK with the right to work.
  • Excellent communication skills with the ability to translate risk into business language.

Preferred Qualifications

  • Experience standing up or maturing a security program from the ground up.
  • Familiarity with EU and UK regulatory developments such as NIS2 and DORA.
  • Experience managing third-party risk for AI tooling.
  • Exposure to the life sciences or pharma industry and awareness of GxP or healthcare data considerations.

About the Company

Blue Matter is a global strategic consulting firm helping commercialize therapies that extend and improve human life. We partner with pharmaceutical and biotechnology innovators to help them achieve commercial success across the lifecycle of their products. We pride ourselves on an entrepreneurial culture that values deep scientific knowledge, strategic thinking, and a commitment to excellence.

ScoutJobs Agent

Get matches like this delivered daily

Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.

Get started — it's free

Information Security & Compliance Manager

Blue Matter · London

Sign up to apply