info@locke-mccloud.com

Language
Banner Default Image

Cyber Security Governance and Compliance Lead

Back to job search

Cyber Security Governance and Compliance Lead

  • Location:

    Reading

  • Sector:

    GRC / Data Protection

  • Job type:

    Permanent

  • Salary:

    £80,000

  • Contact:

    Jess Bhard

  • Contact email:

    j.bhard@locke-mccloud.com

  • Contact phone:

    0203 854 2230

  • Published:

    over 1 year ago

  • Expiry date:

    2023-12-23

Role: Cyber Security Governance and Compliance Lead

Salary: £80,000+

Location: Reading (Remote)


Locke & McCloud are seeking a Cyber Security Governance Lead on behalf of a leading utilities company. Our client is seeking an individual with a track record of operating in highly regulated environments. The successful candidate will manage and oversee the security function, ensuring compliance with regulatory requirements, regulatory best practices and alignment with business objectives.

Main Responsibilities:

  • Formulate and implement information security policies aimed at achieving security objectives within a defined scope, aligning ISO27001.

  • The successful candidate will lead security audits including scheduling, control evaluation, test activities, audit reporting, issue resolution, and risk assessment.

  • Provide leadership and direction to the Governance Risk and Compliance team, plus day to day task management, performance management and development.

  • Oversee the update and assessment of all security policies, standards, procedures, and guidelines, addressing any associated GRC issues with stakeholders.

  • Collaborate with system and service owners to assess and evaluate security controls for the company's information systems and technology, providing recommendations to management.

  • Support delivery of programmes and projects across the group to ensure information security concerns are met, where necessary ensuring the engagement of the Senior Information Security Analysts is provided to programmes and projects.

  • With support from the team, lead and enable the design of security controls and provide input to projects from the early stages of ideas in the business.

About you:

  • Strong background implementing and managing security and regulatory frameworks including ISO27001, PCI DSS, Cyber Essentials, GDPR/DPA.

  • Strong understanding of IT infrastructure, architecture, and information security.

  • Background in security governance of a company including security audits/assessments, reporting, and defining and implementing improvement roadmaps.

  • Experience in implementing security solutions across growing cloud environments and infrastructure.

  • Good, practical knowledge of information security and privacy standards, regulation & legislation.

  • Relevant information security professional certification(s) desirable such as CISSP, CISM and CIISec membership.

Our client offers a generous pension contribution scheme, performance bonus and a range of other benefits.

Apply now!

Back to job search