Information Security Assurance Manager

We specialise in creating mobile app and web-based financial software. Although we have a fully remote workforce, we are centred in the East Midlands, UK.

---

The Role

This is a hands-on hybrid role covering both information security and broader compliance. You’ll take ownership of our ISO 27001 implementation project and ongoing ISMS, while also ensuring we meet obligations under FCA, AML, GDPR, and other relevant regulations.

You’ll work closely with leadership, product, and engineering teams to design policies, run risk assessments, manage audits, and provide compliance guidance to the business.

Key Responsibilities

• ISO 27001: Lead the initial implementation and ongoing management of our ISMS; prepare the company for certification and external audits.
• Risk Management: Own risk registers, conduct assessments, and establish mitigation processes across security, compliance, and operational domains.
• Regulatory Compliance: Ensure adherence to FCA, AML, GDPR, and other fintech regulatory frameworks as necessary.
• Policies & Training: Draft and maintain company-wide policies; deliver staff training on security and compliance.
• Audit & Reporting: Coordinate internal and external audits, maintain evidence, and report to leadership on compliance and risk status.
• Advisory Role: Act as the internal point of contact for compliance/security queries from clients, regulators, and partners.

About You

• Professional certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Auditor/Implementer, or equivalent.
• Skills proven in practice with direct responsibilities in previous experience.
• Strong understanding of information security management systems and audit processes.
• Background in compliance and risk management, ideally in fintech, SaaS, or another regulated industry.
• Knowledge of FCA, AML, GDPR obligations.
• Excellent communicator who can explain complex compliance/security issues clearly to both technical and non-technical colleagues.
• Self-starter comfortable working in a startup/scale-up environment, balancing structure with pragmatism.

What We Offer

• True remote working with a supportive, collaborative team.
• Opportunity to build and own compliance and security foundations from the ground up.
• Exposure to all areas of a growing fintech business.
• Collaborative and supportive team culture

What is the work like?

For an insight into what is like working at VI, take a look at some blogs from people:

• A year with VI by Sophie
• A year with VI by Allie
• Six months with VI by Daniel

Benefits

• You can opt-in to our private healthcare schema administered by Benenden Health

Salary

Starting salary is negotiated based on previous experience with periodic reviews against a skill matrix. Indicative bands are below, depending on relevant academic background and commercial experience.

• 1-2y relevant experience: £38k FTE
• 2y+ relevant experience: £38k+ FTE depending on experience

Remote First

We have a mission to become a remote-first company.

It is critical that:

• You have a quiet and comfortable location where you can work from home, equipment will be provided.
• You can travel occasionally (2-4 times a year) for team events in the UK.
• You can work typical office times 09:00 to 17:30 (we’ve not transitioned to full flexible working)
• Must be based in the UK permanently.

Visa and Sponsorships

We are not currently licensed to sponsor a visa.

Eligibility to work in the UK

Please ensure that you are eligible to work in the United Kingdom before you apply.

Recruiters

We do not work with recruiters in any capacity. Please do not call us or send unsolicited CV’s.

Location

Although we have a remote team, we do occasionally meet up for social or business critical kick-off meetings. It is important that you can occasionally travel to these venues which will be based around the East Midlands, UK.

Job Directory Websites

If you came to this page via another recruitment website or job directory, please be advised that if you submit your information through the job directory channel, you might not get a response.

Grow with us. Help us to succeed, and we’ll help you to succeed.

If you have a further enquiry that might not be answered on this page, or you would like to apply for a role on our careers page, it is crucial that you contact us via our email address. We will not be able to help via the telephone. Any messages sent to our careers email address will be picked up by a member of our team.