Information Security Manager

We’re currently recruiting for an Information Security Manager to join our centralised Group IT Team. This role will involve leading Kier Transportation (including Transportal) Information Security practice and assessing the security governance, risk and compliance requirements across the business area.

Location: Flexible, hybrid working. Can be based out of our Rushden or London office. Travel to both is required as well as to various UK wide Transportation sites and offices for audits

Hours: 37.5 hours per week - some flexibility on hours available if desired, just let us know when you speak to us

As an Information Security Manager, your day‑to‑day responsibilities will include, but not be limited to:

• Working with Kier’s strategic partners to ensure overall Information Security governance is understood and being adhered to by all partners.
• Providing consultative advice and coaching to security customers within the Kier Transportation environment, and wider business as required.
• Creating status reports and briefings on security matters for staff and senior management.
• Supporting bids by providing security review and assurance around Bid security requirements.
• Ensuring upward balanced and expert reporting to guide stakeholders in how to manage Kier IT Security risks.
• Ensuring that Transportation adhere to Kier policies and authorised procedures.
• Devising and delivery of Security Education training aligned to specific contractual requirements.

This role of Information Security Manager is great for you if:

• Security expertise backed by certifications such as CompTIA Security+, ISO 27001 Lead Implementor/Auditor, CISM, or CISSP – or equivalent hands‑on experience.
• Strong technical knowledge in cloud security, IAM, network segmentation, OWASP, and DevSecOps.
• Proven ability in risk management, applying frameworks like ISO 27001 and NIST to deliver proportionate controls.
• Experience in secure‑by‑design principles and validating large‑scale, high‑risk services.
• Familiarity with key standards such as List‑X (FSC), ISO 27001, Cyber Essentials, and Cyber Essentials Plus.
• Awareness of how emerging technologies impact security requirements and architecture.
• Understanding of information management, SDLC, IT service management, Enterprise Architecture, and ITIL frameworks.

We’re proud to be able to offer our brilliant people a wide variety of benefits that you can tailor to your needs. You can see more information of benefits here.

Making Kier a diverse and inclusive place to work is a huge priority for us. We’re proud of the steps we’ve taken so far, but we know we must always do more. Our employees are key in shaping Kier’s diversity and inclusion initiatives and our people have made a huge impact on how we work, by using their experiences to shape our policies. You can see our D&I action plan here.

As a Disability Confident employer, we will ensure that a fair and proportionate number of disabled applicants that meet the minimum criteria for this role will be offered an interview.

We look forward to seeing your application to #joinkier

• Info Sec Manager.pdf