This job is no longer available

The job listing you are looking has expired.
Please browse our latest remote jobs.

See open jobs →
Form3 logo
Form3

Information Security Officer

Fully Remote
Operations
Added
less than a minute ago
Location
Type
Full time
Salary
Not Specified

Use AI to Automatically Apply!

Let your AI Job Copilot auto-fill application questions
Auto-apply to relevant jobs from 300,000 companies

Auto-apply with JobCopilot Apply manually instead
Save job

Related skills

risk management compliance information security policy development governance

THE ROLE

📝

AsanInformation Security Officer at Form3,you’llplay a pivotal role in strengthening and evolving our information security governance, risk, and compliance practices. Working within the Information Security team,you’llhelp ensure that Form3 continues tooperatesecurely andmaintainthe trust of our customers and partners.

You’llwork closely with teams across the organisation,from Engineeringand Product toLegaland Riskteams,to embed security into business and technology decisions. This is a hands-on role that combines strategic oversight with practical execution, ensuring our controls, frameworks, and awareness initiativesremainindustry leadingas we scale globally.

Whatyou’lldo

  • Apply expert knowledge of security frameworks and controls such as NIST, ISO22301, ISO27001, ISO27017/18, ISAE3000/SOC2, and GDPR to support security governance.

  • Support the development, maintenance, and continual improvement of the ISMS and BCMS.

  • Assistin drafting andmaintainingInformation Security Policies and ensure alignment with business andcustomer requirements.

  • Contribute to the planning and execution of external audits, engaging directly with auditors and customers.

  • Monitor and report on adherence to securitycontrolsacross all areas of the businessvia risk assessmentsand internal audits.

  • Assess and support the remediation of information security risks, non-conformities, and issues across systems and services.

  • Support vulnerability management processes, from triage and tracking to remediation reporting, in partnership withOffensive Security andEngineering teams.

  • Conduct vendor and third-party security assessments, ensuring suppliers meet Form3’s security and compliance requirements.

  • Partnerwith theDefensive Engineeringteamto ensure securityrequirements are built intoproductdevelopments.

  • Deliver and enhance security awareness and training initiatives to promote a strong security culture across Form3.

  • CollaboratewiththeSecurity Operations teamtomaintainsituational awareness of emerging threats and vulnerabilities, ensuringtimelyescalation and risk-based response.

WE’RE LOOKING FOR 🔍

Form3’s Information Security Governance, Risk and Compliance (GRC) team plays a critical role in protecting the organisation, sowe’relooking for someone who is analytical, collaborative, and passionate about driving security excellence.You’llthrive on solving complex problems, balancingdeeptechnicalknowledgewith strong governance principles, and finding ways to make security scalable across a fast-moving, cloud-native business.

Essential

  • 5+ years’ experience in Information Security, ideally within a fast-paced technology or financial services industry.

  • Strong working knowledge of frameworks such as ISO27001,ISO22301,SOC1, SOC2,NIST, and GDPR.

  • Proven experience developing, implementing, and improving information security policies, standards, and controls aligned to recognised frameworks.

  • Hands-on experience conducting audits, risk assessments, and business impact analyses.

  • Hands-on experiencewith vulnerability managementwithin a complex and dynamic cloud environment

  • Broad understanding ofcloud security

  • Excellent communication and stakeholder engagement skills, with the confidence to influence at all levels of the organisation.

  • Analytical mindset with a focus on continual improvement and measurable outcomes.

Desirable

  • Security-related qualifications such as CISSP, CISM, CISA, or ISO27001 Lead Implementer/Auditor.

  • Experience leading certification and attestation programmes such as ISO27001, ISO22301orSOC 2

  • Experienceoperatingin regulated or high-availability environments such as financial services, payments, or critical infrastructure.

  • Familiarity with GRC tooling and automation to streamline compliance, risk, and control management activities.

THE TEAM

👥

This role sits within Form3’s Information Security Governance, Risk and Compliance (GRC) team and reports directly to the Head of GRC. As part of a highly collaborative security function,you’llplay a key role in shaping how Form3 managesinformation securityrisk, compliance, and assurance across all areas of the business.

The GRC team underpins Form3’s securitystandards,designing andmaintainingthe frameworks, policies, and controls that keep our people, systems, and customers safe. Joining at this stage offers the opportunity to make a significant impact, strengthening governance andcomplianceacross a cloud-native, environment while helping define how security scales with the business.

INTERVIEW PROCESS

✍️

Stage 1:

ScreeningCall with Talent Team

Stage 2:

Interview with Principal Security Officer

Stage 3:

Interview with Head of GRC

We always aim to stick to the above process, however there may be occasions when anadditionalinterview stage is needed for us to be surewe’rehiring the right person!

HIRING LOCATIONS📍

Weare able toaccept applications from theUKonly.

All new joiners start their first day in our office to collect the equipment needed to work remotely. We’ll also arrange for some of your team to come in to say hi, ensuring you’re supported and have a positive first few days with Form3!

ABOUT FORM3💭

Revolutionising the world of payments with ourcutting-edgetechnology and innovative solutions. For more information aboutlife atForm3 check out the following pages:

What we do

|

Life at Form3

|

Benefits

|

Podcasts

OUR DEI&B COMMITMENT

We hire talented people from a variety of backgrounds and experiences and are committed to a work environment based on diversity, open-mindedness and curiosity. We’re united by our company values (we even created them together!) and we celebrate our unique differences.

Our employee lifecycle processes are designed to embrace equal opportunity and prevent discrimination against our people regardless of personal characteristics. It is our strong belief that the more inclusive and belonging we are as a business, the better our work will be.

As an inclusive employer, we guarantee to interview all neurodiverse and physically disabled applicants who meet the minimum criteria for this role. We also encourage candidates to notify us of any reasonable adjustments that may be required during the recruitment process. This includes providing job adverts in alternative, accessible formats or adjustments required at interview stage.

If you consider yourself to be neurodiverse or physically disabled under the UN definition of disability and would like to be considered under this scheme and/or require any reasonable adjustments please let us know by sending an email to

careers@form3.tech

 clearly stating your consent for us to process this data.

For more information please refer to our

Recruitment Data Policy

.

Use AI to Automatically Apply!

Let your AI Job Copilot auto-fill application questions
Auto-apply to relevant jobs from 300,000 companies

Auto-apply with JobCopilot Apply manually instead
Share job

Meet JobCopilot: Your Personal AI Job Hunter

Automatically Apply to Remote Operations Jobs. Just set your preferences and Job Copilot will do the rest—finding, filtering, and applying while you focus on what matters.
Activate JobCopilot

Related Operations Jobs

See more Operations jobs →