Information Security Officer – International Law Firm (London-Based)

Permanent | Hybrid Working | Competitive Salary

I am working with a leading international law firm to support their search for an experienced and proactive Information Security Officer (ISO) to lead their global information and data security programme.

This senior-level role offers the opportunity to shape the firm’s long-term security strategy, drive ISO 27001 certification, and ensure the resilience of systems and data across offices in the UK, US, and Europe. The position reports to the Director of IT and works closely with regional IT teams and external partners.

Key Responsibilities:

• Lead the firm’s information security governance framework across all offices and platforms
• Maintain and enhance the ISO 27001-aligned Information Security Management System (ISMS)
• Ensure compliance with frameworks including CIS Controls, NIST, ISO 27701, and GDPR
• Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure
• Drive firm-wide security awareness and training initiatives
• Monitor regulatory changes and emerging threats, and advise on best practices

Ideal Candidate Profile:

• Strong knowledge of ISO 27001 implementation and certification
• Experience in a professional services or legal environment
• Familiarity with Microsoft 365 Defender, SentinelOne, Purview, and Azure security tools
• Skilled in managing access controls and security operations across enterprise platforms
• Excellent communication and stakeholder engagement skills

Desirable Attributes:

• Certifications such as CISM, CISSP, or ISO 27001 Lead Implementer/Auditor
• Experience working with MDR/XDR partners and tools like Trustwave, Mimecast, or FortiGate
• A background in mentoring and promoting a security-conscious culture

This is a London-based role with hybrid working and a collaborative, forward-thinking environment. If you are looking to make a strategic impact in a global legal setting, I would be pleased to share further details.

Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply.

Ryder Reid Legal is a recruitment specialist. For over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies.

https://uk.linkedin.com/company/ryder-reid-legal