Energy Jobline is the largest and fastest growing global Energy Job Board and Energy Hub. We have an audience reach of over 7 million energy professionals, 400,000+ monthly advertised global energy and engineering jobs, and work with the leading energy companies worldwide.

We focus on the Oil & Gas, Renewables, Engineering, Power, and Nuclear markets as well as emerging technologies in EV, Battery, and Fusion. We are committed to ensuring that we offer the most exciting career opportunities from around the world for our jobseekers.

Job Description

Introduction \n\nSaab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth.

We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training.\n\nThe Role:\n\nThis role is part of our Public Safety Solutions Business Unit.\n\nThe Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations.\n\nThe role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response.\n\nKey Responsibilities: \n\nSecurity Leadership & Assurance\n\nOwn and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations.\n\nLead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001.\n\nMaintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls.\n\nDevelop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity.\n\nProvide regular assurance reporting to senior leadership and stakeholders.\n\nRisk Management & Compliance\n\nOwn and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite.\n\nConduct and support risk assessments, internal audits, and external certification activities.\n\nEnsure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the Cyber Security Centre.\n\nWork with internal teams and suppliers to implement proportionate and effective security controls.\n\nSecurity Operations & Incident Management\n\nAct as the primary point of contact for security incidents, leading or coordinating response activities.\n\nTake a hands-on role in incident investigation, root cause analysis, and remediation.\n\nEnsure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication.\n\nOversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers).\n\nService Resilience & Operational Security\n\nEnsure security is embedded in the design and operation of services supporting emergency response.\n\nWork closely with operational and technical teams to maintain high levels of system availability and resilience.\n\nSupport business continuity and disaster recovery planning, testing, and continuous improvement.\n\nSecurity Awareness & Culture\n\nDevelop and deliver targeted security awareness and training programmes.\n\nPromote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services.\n\nStakeholder Engagement\n\nAct as a trusted advisor to senior leadership, operational teams, and external stakeholders.\n\nSupport engagement with public sector customers, providing assurance on security controls and practices.\n\nCollaborate with suppliers and partners to ensure security requirements are met across the supply chain.\n\nQualifications & Skills:\n\nProven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services.\n\nPractical experience with security monitoring and incident response tooling (SIEM/XDR)\n\nStrong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS.\n\nPractical experience with Cyber Essentials / Cyber Essentials Plus certification.\n\nExperience managing security risks, incidents, audits, and compliance activities in operational environments.\n\nAbility to balance strategic leadership with hands-on delivery in a small organisation.\n\nStrong understanding of service resilience, availability, and risk in mission-critical systems.\n\nExcellent communication skills, with the ability to engage both technical and non-technical stakeholders.\n\nBy submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, Security Vetting, reference checks, verification of working rights and in all circumstances candidates will be placed through a security interview

If you are interested in applying for this job please press the Apply Button and follow the application process. Energy Jobline wishes you the very best of luck in your next career move.