ISMS Manager

Job description

ISMS Manager

Remote/Hybrid

Our talented people are creating the technology of the future

From scheduling to maintenance to keeping people safe, 2.7 million people are helped by our software daily. Technology makes it possible; people make it happen and you could be part of that.

The Tracsis Group has grown rapidly, diversifying into related transport technologies, and successfully executing a strategy that has seen it make a total of seventeen acquisitions.

Today Tracsis is a leading provider of software, hardware, data analytics/GIS and services for the rail, traffic data and wider transport industries. The Group has c.550 permanent employees serving its growing customer base from offices in the UK, Ireland and the US.

The Role

We’re looking for an experienced Group ISMS Manager to take ownership of our Information Security Management System (ISMS) and help us continually strengthen our approach to information security across the Group.

This is a key governance role, responsible for ensuring our ISMS remains effective, proportionate, and aligned with ISO 27001, contractual obligations, and wider business objectives. You’ll work closely with stakeholders across the business, providing practical guidance, coordinating assurance activities, and supporting a strong security‑aware culture.

What you will do

As Group ISMS Manager, you’ll:

• Own and maintain the Group ISMS, ensuring ongoing alignment with ISO 27001 and relevant legal, regulatory, and contractual requirements
• Coordinate information security risk management activities, including risk identification, assessment, treatment and reporting
• Develop, review and maintain group‑wide information security policies, standards and supporting procedures
• Prepare for, coordinate and support internal audits, external certification audits and management reviews
• Oversee the information security incident management framework, ensuring incidents are logged, investigated and lessons learned
• Provide pragmatic, business‑focused information security advice to teams across the Group
• Promote information security awareness and support onboarding and training activities
• Act as a key point of contact for external parties such as auditors, consultants, suppliers and managed service providers

What we’re looking for

• Good working knowledge of ISO 27001 and information security management principles
• Experience operating or supporting a management system within a multi‑business or group environment
• Strong documentation, coordination and stakeholder engagement skills
• A pragmatic mindset, able to translate security requirements into workable, business‑aligned solutions

Why join us?

• Opportunity to shape and influence information security at a Group level
• Collaborative culture with supportive stakeholders
• A role that blends governance, improvement and real‑world problem solving
• Flexible working options and a competitive benefits package

Ready to make an impact?

Apply now to join a forward-thinking team shaping the future of Rail Technology and Services.

Benefits:

• Flexible working hours to support work-life balance
• 25 days holiday + bank holidays
• Competitive salary

• Udemy Licence for learning and development
• Bupa Medical Health care
• Life assurance (3x basic salary)
• Enhanced Parental Leave
• 2 volunteering days per year
• Tusker Car Scheme
• Cycle to work scheme

Next Steps

Our TA team are committed to responding to all candidates within a reasonable timeframe.

The process:

1. Call with our Talent Acquisition Team
2. Comprehensive CV walkthrough (1 hour)with the Hiring Manager
3. 1 hour Competency based interview

Our process is designed for us to understand your skills and experience and to give you the opportunity to find out more about the role, as well as the company.

We are committed to building a diverse workforce. Even if you do not tick all the boxes, we would still love to hear from you! If you require any adjustments or additional support during the application and interview process do not hesitate to get in touch.