Security Assurance Manager
Bromford Flagship Livewest
Do you have experience delivering security assurance, audit, compliance reviews or security control assessments Are you confident working with recognised security frameworks such as NIST, CIS Controls and ISO 27001? Do you hold a professional qualification in Information Security, Assurance or Audit (such as CISSP, CISA, ISO 27001 Lead Auditor or equivalent)?
Are you passionate about providing independent assurance that security controls are effective, risks are understood and organisations remain compliant with industry standards?
We're looking for an experienced Security Assurance Manager to lead our security assurance function here at Bromford Flagship Livewest. In this role, you'll provide oversight, challenge and evidence-based assurance that information security policies, standards and frameworks are embedded and operating effectively across services, projects and third-party suppliers.
This is an exciting opportunity to shape and mature a security assurance capability, influence stakeholders across the business and play a key role in strengthening organisational resilience.
Location: Negotiable - Norwich, Tewkesbury, Exeter
Hours: Full Time with agile working
Contract: Permanent
What You'll Be Doing
As Security Assurance Manager, you will:
Lead the development and delivery of a risk-based security assurance programme.
Conduct and oversee security control assessments, compliance reviews and audits.
Provide assurance that security policies, standards and frameworks are operating effectively across the organisation.
Assess security posture, identify control gaps and recommend pragmatic improvements.
Support governance activities by providing expert security assurance input and reporting.
Work closely with Internal Audit, Risk, Compliance, Information Security and Technology teams.
Collaborate with third-party partners and suppliers to assess and improve security controls.
Support policy development, framework compliance and risk management activities.
Monitor emerging regulatory requirements, industry standards and assurance best practices to drive continuous improvement.
What We're Looking For
Essential Experience
Proven experience in Information Security Assurance, Governance, Risk & Compliance (GRC), Audit or a similar security assurance role.
Experience conducting security control assessments, audits and compliance reviews.
Strong understanding of information security governance and risk management principles.
Ability to influence and challenge stakeholders constructively while maintaining strong working relationships.
Excellent communication and stakeholder management skills with the ability to engage colleagues at all levels.
Technical Knowledge
You will have a strong understanding of recognised security frameworks and standards, including:
NIST Cybersecurity Framework
CIS Controls
ISO 27001 and the ISO 27000 family of standards
You will understand how to assess compliance, evaluate control effectiveness and drive continual improvement across a complex technology environment.
Qualifications
A relevant professional qualification in Information Security, Assurance or Audit, such as:
CISSP
CISA
ISO 27001 Lead Auditor
CRISC
Or an equivalent professional certification
For full details on the role and its responsibilities, click here to view the Security Assurance Manager - The Part I Play document.
Why Join Us?
In return, you'll have the opportunity to:
Lead and shape a growing security assurance function.
Influence security strategy and organisational risk management.
Work alongside experienced technology, risk and security professionals.
Drive improvements that have a genuine impact on business resilience.
Continue developing your technical, assurance and leadership capabilities through training and professional networking opportunities.
What We Offer
Competitive salary
Family Friendly policies
Health and Wellbeing support
Full benefit details depend upon base office location.
How to apply
To apply please click "apply online" below. You will be asked to attach your CV (in MS Word or PDF format) and provide a supporting statement, outlining why you’re the right person for the job.
Important information
Closing Date: 22nd July 2026 (Midnight)
First Interview Date: TBC
Flagship is part of Bromford Flagship Livewest. We create communities where people can put down roots, feel secure, and thrive. By joining us, you become part of a one of the largest housing providers in the UK - delivering community-focused services across the East, Central and South West of England. We manage approximately 120,000 homes, serving around 300,000 customers, and with firm ambitions to deliver an additional 50,000 new homes by 2040.