About the roleIT Compliance & Service ManagerMiddlesbrough - HybridSalary - £50-60kMy client is a medium-sized, fast-moving business seeking a technically strong IT Compliance & Service Manager to lead their ISO27001 compliance programme and oversee IT service delivery. You'll manage outsourced IT service providers, execute our information security management system (ISMS), and ensure effective Microsoft 365 governance.This is a senior, high-impact role requiring initiative, technical depth, and strong vendor relationship management skills. You'll think independently, propose solutions, and advocate for IT governance best practices across the organisation.Key Responsibilities ISO 27001 & IT GovernanceExecute ISMS rollout and maintain policies, processes, and controls aligned with ISO 27001Develop and maintain IT security policies, procedures, and standardsSupport internal audits, risk assessments, and compliance reportingHelp steer the overall ISMS programme and ensure audit readinessThird-Party Service Management & ITSMManage strategic relationships with IT service providers and oversee SLA performanceLead vendor selection processes and coordinate between multiple service providersOversee day-to-day IT operations and manage incident, request, and change processesDrive continuous improvement initiatives aligned with ITIL frameworksMicrosoft 365 GovernanceWork with service providers to ensure M365 is configured, secured, and optimisedDevelop governance policies and promote best practices across the businessMonitor compliance with licensing and security requirementsStakeholder EngagementServe as IT representative on the Risk Committee and contribute to the Change BoardPartner with internal teams on facilities-related IT requirementsAct as trusted advisor to business leaders on IT governance and compliance mattersRequired Skills & ExperienceProven experience in IT compliance, governance, or service management rolesStrong knowledge of Microsoft 365 capabilities, security, and administrationExperience managing outsourced IT providers and vendor relationshipsSolid understanding of ISO 27001 and ISMS implementationKnowledge of ITSM frameworks (ITIL) and service delivery best practicesStrong vendor management and stakeholder engagement abilitiesProactive, solutions-oriented mindset with excellent problem-solving skillsDesirable QualificationsISO 27001 Lead Implementer or Auditor certificationMicrosoft certifications (MS-100, MS-101, Security-focused)ITIL Foundation or higher certificationExperience in medium-sized business or scale-up environment
