Senior Information Security Specialist

Burges Salmon

Role

Senior Information Security Specialist

    Category: Business professional Team: Operations Location: Bristol, Edinburgh Terms: Permanent

We're looking for a Senior Information Security Specialist to help shape and strengthen how we protect our clients, our people, and our business. This role is based in our Bristol office, with hybrid working available.

This is a newly created position, working closely with the Information Security Manager at the heart of the firm's security strategy. You'll support governance, manage risk, and respond to incidents, while building trusted relationships across the business. From identifying vulnerabilities to driving improvements, you'll play a key role in maintaining the high standards our clients expect and trust.

This is a critical and evolving area of the firm, so we're looking for someone who's confident working in complexity, comfortable with change, and motivated by the opportunity to make a lasting impact.

The role can either be based at our Bristol or Edinburgh office and will involve occasional travel to our other office locations.

What you'll be doing

  • Supporting and evolving our Information Security Management System (ISO 27001, Cyber Essentials Plus)
  • Identifying and reducing security risks across people, processes and technology
  • Investigating and responding to security incidents using a range of security tools
  • Applying a root cause analysis approach to help prevent future incidents
  • Providing assurance to clients and supporting security questionnaires
  • Promoting a strong, firmwide security culture
  • Communicating complex security topics clearly to a range of stakeholders
  • Keeping up to date with the latest information security threats and vulnerabilities

What we're looking for

  • Strong understanding of information security principles within a professional services environment
  • Good technical awareness and proven experience in a similar role
  • Confident stakeholder management skills
  • Experience with security frameworks (e.g. ISO 27001)
  • Relevant industry-recognised certifications in security, risk management or IT (desirable)
  • Strong awareness of the evolving cyber threat landscape, with a genuine interest in all aspects of security
  • Ability to translate technical risks into clear, practical advice
  • A curious mindset with a passion for continuous improvement

If you're looking for a role where you can influence, raise standards, and deliver work that has a real and lasting impact, we'd love to hear from you.

Why Burges Salmon?

You will join a workplace recognised for excellence, flexibility and responsible business practices, including:

  • RollOnFriday's ‘Best Law Firm to Work At' — five years running
  • ‘Law Firm of the Year' at the Legal Business Awards 2025
  • ‘Sustainable Business of the Year' at the Bristol Legal Awards 2025
  • Investors in People Platinum accreditation

A full overview of all the benefits and rewards of working at Burges Salmon can be found on the 'Working at Burges Salmon' section of our careers page.

Interested in applying?

If you would like to learn more about the role or the recruitment process or require any reasonable adjustments, please contact:

Katarina Athanasakos, Resourcing Specialist - ***email_hidden***

Advert closes - 22nd June 2026

INDBS

Meet the recruiter

Katarina Athanasakos

***email_hidden***

+44 117 307 6517

Apply Now Apply Now Post a Resume

See more jobs in Edinburgh, Scotland, jobs in the United Kingdom