Join us.

Core Engineering

Lead Security Manager

With over 35 nationalities and a range of backgrounds represented in our Benevolent team, we aim to build an inclusive environment where our people can bring their authentic selves to work, be respected for who they are and the exceptional work they do. We welcome and actively encourage applications from all sections of society and are committed to offering equal employment opportunities regardless of sex, race, religion or belief, ethnic or national origin, marital, domestic or civil partnership status, sexual orientation, gender identity, parental status, disability, age, citizenship, or any other basis. We see our diversity as an asset as we tackle challenging problems that bridge the gap between drug discovery and technology.


The Role

BenevolentAI is looking for a Lead IT Security Manager to lead the security team and optimise the security program for the organisation.

The lead security manager will be responsible for managing all our GRC programs and Security engineering. The successful candidate will be responsible for information security across our three sites and also our large AWS cloud infrastructure. You will lead programs in Risk Management, Supply chain security, policy development and maintenance and compliance frameworks.

Primary Responsibilities

  • You will develop security roadmaps and strategies to reduce the organisational risk posture.
  • You will manage the cyber risk program and manage the security awareness training program.
  • You will develop and improve security-related policies and procedures.
  • You will maintain alignment or compliance with Information security frameworks.
  • You will assess and monitor the security posture of data service providers.
  • You will act as the subject matter expert for Information security controls and services.
Additional Responsibilities:
  • Support the Data Protection team, monitoring technical controls mapped to data protection risks

We are looking for someone with

  • A bachelor’s degree in Computer Science or related experience.
  • 7+ years experience in a hands-on cloud security role.
  • Experience maintaining a cyber risk management program.
  • Strong comprehension of ISO 27001 ISMS requirements.
  • Good understanding of compliance frameworks (ISO 27001, NIST CSF)
  • Experience in cyber security awareness programs.
  • Demonstrable experience in developing security roadmaps and strategies.
  • Good Understanding of Data protection regulations.
  • Good understanding of Amazon Web Services (AWS)
  • Experience operating supplier security programs.
  • Strong stakeholder management skills.
  • Must be easily adaptable and able to work in a changing environment
Nice to haves:
  • CISSP, CISM or CRISC certifications
  • Master’s degree in Computer Science or related.
  • Experience working in Healthcare, Financial, or another regulated environment
  • Any of the AWS associate certifications

We share a passion for being part of a mission that matters, and we are always looking for curious and collaborative people who share our values and want to be part of our journey.  If that sounds like a fit for you, hit the apply button and join us.

About us

BenevolentAI unites AI with human expertise to discover new and more effective medicines. Our unique computational R&D platform spans every step of the drug discovery process, powering an in-house pipeline of over 25 drug programmes. We advance our mission to reinvent drug discovery by harnessing the power of a diverse team, rich with different backgrounds, experiences, opinions and personalities.  In our offices in London and New York and research facility in Cambridge (UK), we work in highly collaborative, multidisciplinary teams, harnessing skills across biology, chemistry, engineering, AI, machine learning, informatics, precision medicine and drug discovery.

Want to do a little more research before you apply?

Head over to our Glassdoor page to learn about our benefits, culture and to find out what our team think about life at Benevolent. You can also find out more about us on LinkedIn and Twitter.

Important Note

Our team will only contact you from the domain If you receive a suspicious contact request, please email Thank you.