Information Security Manager

The opportunity for you

The Firm seeks an experienced Information Security Manager to lead our security strategy, operations, and dedicated team. The successful candidate will work closely with the Chief Information Security Officer, overseeing all aspects of information security across our UK and global offices. This leadership role is critical in ensuring effective protection of the firm’s technology assets, client data, and business continuity.

Key responsibilities

Strategic Leadership:

• Develop, implement, and communicate a comprehensive information security strategy aligned with the firm’s business objectives and risk appetite.
• Oversee continuous improvement of policies, standards, procedures, and controls for all offices.

Team Management:

• Lead, mentor and develop a high-performing security team.
• Set objectives, manage workloads and foster professional growth within the team.

Security Operations:

• Oversee operations including threat monitoring, vulnerability management, access controls, endpoint security and incident response.
• Maintain robust cyber resilience measures across on-premise and cloud environments.

Compliance & Risk Management:

• Ensure compliance with GDPR, SRA requirements (for legal sector), ISO 27001/2 standards and other applicable regulations in all jurisdictions where we operate.
• Manage internal/external audits; regularly assess current risks; report findings to senior management.

Key responsibilities (continued)

Project Management:

• Provide strategic input on firmwide technology projects ensuring secure design principles are followed from inception through delivery.
• Deliver Information security projects and initiatives.

Responding to Client Security Questionnaires:

• Coordinate responses to client security questionnaires by gathering accurate information on the firm’s policies, controls and practices.
• Liaise with relevant stakeholders—including risk/compliance teams—to ensure timely completion that meets client expectations.
• Maintain up-to-date records of standard responses and evidence required by clients during due diligence or ongoing panel reviews.

Business Process Management (BPM) Support:

• Support BPM initiatives by assisting in documentation, analysis and continual improvement of core business processes—especially those relating to information security or compliance.
• Work cross-functionally to ensure process maps are current; contribute expertise on secure workflows within operational improvements.
• Monitor regulatory changes relevant to BPM/security processes ensuring documentation remains aligned with best practice.

Reporting:

• Regularly brief the Chief Information Security Officer/executive board on key metrics; risk posture; incidents; progress against strategic objectives—including updates regarding client questionnaire activity and BPM developments.

Knowledge, skills and experience

Essential Qualifications & Experience

• Significant experience (typically 7+ years) in a senior Information Security role within legal/professional or financial services.
• Practical knowledge of UK/EU/international regulatory frameworks (GDPR/SRA etc.).
• Proven experience leading/managing technical teams in multi-jurisdictional contexts.
• Technical expertise across SIEM platforms, cloud security solutions (e.g., Azure/AWS), endpoint protection suites etc.
• Track record managing incident response/disaster recovery processes in complex environments.

Desirable Skills & Certifications

• Professional certifications such as CISSP/CISM/CISA or equivalent strongly preferred.
• Experience supporting law firm technologies (DMS/PMS/iManage/Workshare).
• Strong interpersonal communication skills – comfortable engaging at partner/board level as well as technical teams.

Benefits

Here are a select few benefits that Taylor Wessing offer; 

• Hybrid working (Offering the opportunity to work remotely, while maintaining a social boundary by working from our award-winning offices for 3 days a week) 
• Holiday (Our basic annual holiday entitlement starts at 25 days, with a further discretionary day of paid leave in December. You may also purchase up to five extra days each year (pro rata). 
• Enhanced Maternity and Paternity leave (After one-year service, you are entitled to up to 26 weeks leave full pay if you or your partner give birth or adopt a child). 

Along with these there are many more benefits we offer, with the addition of a comprehensive flexible benefits package available. 

Our culture

Nurturing a diverse, inclusive culture allows all of our talent to flourish, sparks creativity and powers innovation.  We continue to build a team that exemplifies inclusivity and reflects the firm's core values: creative, excellence, integrity, responsible, respect and team.  We value and celebrate the differences in who we are, what we have experienced and how we think, so all candidates will be treated fairly regardless of age, caring responsibilities, disability, gender identity, marital status, neurodiversity, pregnancy, race, religion or belief, sex, sexual orientation and socio-economic background.

The way we work

At Taylor Wessing, we never settle for average. We're creative thinkers, problem solvers and continuous learners who excel at what we do and believe our best work is still ahead of us. We are a firm that's large enough for you to achieve your ambitions, but connected enough to be a true community.  

Taylor Wessing

Taylor Wessing is a global law firm that serves the world's most innovative people and businesses. Deeply embedded within our sectors, we work closely together with our clients to crack complex problems, enabling ideas and aspirations to thrive. Together we challenge expectation and create extraordinary results. By shaping the conversation in our sectors, we enable our clients to unlock growth, protect innovation and accelerate ambition. 

With 1250+ lawyers, 350+ partners, 26 offices and 16 jurisdictions we are looking to expand our IT Services  team, with the addition of a Information Security Manager.