We're now recruiting an Information Security GRC Manager to support the Senior Manager and Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services and Business teams in delivering AJ Bell’s systems and services. The Information Security GRC Manager will work with the business and the wider information security team to ensure the appropriate controls, policies and procedures are in place to protect AJ Bell in line with industry best practice and regulatory legislation. In addition, this role will support the coordination and response to activities affiliated with external/internal IT audits as well as due diligence exercises requested by our external business partners and those we perform on our suppliers. Key Responsibilities

Development and delivery of information security policy aligned to industry recognised frameworks (typically ISO27001/2) Exception to policy process management and reporting Management reporting on the status of Information Security and the security change programme. Partner with Business and Technology teams, to develop and track remediation plans for identified risks and issues. Supporting and developing the evaluation of the security posture for key Third Parties, to ensure that they are in line with the desired security posture required by AJ Bell. Undertaking risk profiling of AJ Bell’s information and technology assets Ensure that all duties are carried out with the aim of protecting customers and improving customer experience. Supporting and enabling the business to achieve its regulatory requirements, including consumer duty.

Technical Skills

Strong understanding and knowledge of Information Security risk management tools and techniques Experience of Information Security standards and frameworks Awareness and understanding of the Information Security threat landscape Awareness of Information Security solutions e.g. email / web gateways, SIEM, Endpoint protection etc. Strong understanding of IT General Controls frameworks Awareness of Operational Risk Management and Risk & Control Self-Assessment (RCSA) processes

Competence, Knowledge and Skills

Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Minimum 5 years’ experience in an Information Security role gained in a financial services environment is preferred Self-motivated, professional, tenacious and enthusiastic Strong ownership of tasks, attention to detail and following through to conclusion Ability to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved Ability to work under own initiative to plan and communicate effectively with colleagues and customers Structured, self-starting, flexible and enjoy working in fast-paced environments Effective communication skills, both written and verbal Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management Ability to learn and develop new skills and take on new challenges Excellent attention to detail Attained or working towards CISM certification

About Us AJ Bell is one of the UK’s fastest-growing investment platforms, serving over 644,000 customers and managing £103.3 billion in assets. Through our award-winning platform, we support everyone from professional financial advisers to first-time investors, making it easier to take control of your financial future and feel good investing. With over 1,500 employees across Manchester, London, and Bristol, AJ Bell is a FTSE 250 company and has been recognised as one of the UK’s Best 100 Companies to Work For for six consecutive years, as well as a Great Place to Work® in 2025 and 2026. We offer a collaborative, friendly environment built on strong guiding principles and pride in what we do. What We Offer

Competitive starting salary Starting holiday entitlement of 27 days, increasing up to 31 days with length of service and a holiday buy and sell scheme A choice of pension schemes with matched contributions up to 8% Discretionary bonus scheme Annual free share awards scheme Buy As You Earn (BAYE) Scheme Health Cash Plan – provided by Simply Health Discounted private healthcare scheme and dental plan Free gym Employee Assistance Programme Bikeshare loan scheme Sick pay and pledge Enhanced maternity, paternity, and shared parental leave Loans for travel season tickets Death in service scheme Paid time off for volunteer work Charitable giving opportunities through salary sacrifice Calendar of social events, including monthly payday drinks, annual Christmas party, summer party and much more Personal development programmes built around you and your career goals, including access to personal skills workshops Monthly leadership breakfasts and lunches Casual dress code Access to a range of benefits from our sponsorship deals

Hybrid Working At AJ Bell, our people are the heart of our culture. We believe in building strong connections by working together. That's why we offer a hybrid working model, where you'll spend 50% of working time per month in the office. For new team members, an initial period will be spent full-time in the office to help you immerse yourself in our business and build valuable relationships with your colleagues. AJ Bell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and all employees are empowered to bring their whole self to work. We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, physical and mental disability, marital status and any other characteristics protected by the Equality Act 2010. All decisions to hire are based on qualifications, merit and business need. If you like the sound of the above, or just want to know more about the company and the role, we'd love to speak to you. #J-18808-Ljbffr