Security Compliance and Governance Lead
3 weeks ago
Location: Hybrid
Employment Type: Permanent
Work Schedule: Full Time
Grade Level: 5
At Currys, we share a common goal: to empower everyone to experience outstanding technology. As the leading tech retailer in the UK, we take pride in the exceptional service our customers receive, thanks to our dedicated team of 25,000 passionate colleagues. Together, we learn and grow, celebrating both the significant and subtle achievements that make each day remarkable.
The Security Compliance and Governance Lead will play a crucial role in ensuring the effective implementation of our internal security best practices and adherence to regulatory compliance requirements, aimed at minimizing security risks and enhancing security maturity across Currys.
Key Responsibilities:In this position, you will be tasked with:
• Conducting evaluations across all security processes. Where compliance is achieved, collaborate with stakeholders to ensure ongoing maintenance of controls.
• Cultivating and sustaining relationships throughout Currys to advance the security agenda and remain informed of developments.
• Supporting security governance initiatives across the organization, suggesting and collaborating with stakeholders to foster continuous improvement.
• Driving the governance agenda within the InfoSec team, as governance and control gain increasing importance within the Currys technology division:
• Executing maturity and capability assessments in alignment with NIST and ISO27001/2, effectively presenting the findings to the technology senior leadership team.
• Developing business cases for essential compliance objectives (NIST/ISO/PCI) and assisting in the project management of these initiatives.
• Documenting controls implemented across InfoSec, ensuring these are updated as capabilities and processes evolve over time.
• Managing the policy and standards exceptions process, collaborating with subject matter experts in InfoSec and technology risk functions to connect exceptions to risk. Ensuring alignment of policies and standards with hardening protocols for various technologies.
• Overseeing InfoSec policies and standards, working with subject matter experts to keep these current.
This role necessitates the ability to maintain productive internal and external relationships while managing one or more work streams within the information security function, ensuring delivery meets the agreed scope, quality, timeline, and budget criteria. Proactive management of associated risks and issues is essential, along with active engagement with business and technical stakeholders across the organization.
Qualifications Required:
• Extensive expertise in PCI DSS is essential, as a significant portion of this role will focus on this standard.
• A solid understanding of ISO27001 and/or NIST CSF frameworks, with the ability to conduct audits and familiarity with auditing techniques.
• Proficiency in building relationships and communicating effectively with technical, commercial, and customer stakeholders.
• Strong verbal and written communication skills, with the ability to present well-reasoned arguments.
• Knowledge of key security technologies, including vulnerability management, security information and event management, intrusion detection, and access auditing.
We recognize that our people are the cornerstone of our success. That's why we continually seek ways to reward outstanding performance. In addition to 30 days of annual leave (including bank holiday entitlement) and a competitive pension scheme (for permanent employees), we offer a range of benefits designed to support you.
• Company bonus
• Hybrid Working
• Company Pension
Become part of our team, and we will support you at every stage, helping you develop the career you desire through new opportunities, ongoing training, and lifelong skills.
Not only can you shape your own future, but you can also help us take charge of ours. As the largest recycler and repairer of technology in the UK, we are positioned to make a meaningful impact on both people and the planet.
Every voice is valued at our table, and we are committed to integrating inclusion and diversity into all aspects of our operations, including how we strengthen our workforce. We strive to ensure that you have a fair opportunity to showcase your talents during our application process.
-
London, Greater London, United Kingdom Iceberg Cyber Security Full timeAbout the Company: Iceberg Cyber Security is a prominent player in the financial markets, recognized for its innovative approach and agile operations. With a compact global team, we are at the forefront of the industry, driving significant advancements in cyber security.Role Overview: As the Cyber Security Governance Lead, you will be pivotal in shaping the...
-
Security Compliance and Governance Lead
3 weeks ago
London, Greater London, United Kingdom Currys Full timeSecurity Compliance & Governance Lead Location: HybridEmployment Type: PermanentWork Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to experience exceptional technology. As the UK's leading technology retailer, we take pride in the service our customers receive, thanks to our dedicated team of 25,000 passionate...
-
Lead Cyber Security Governance Specialist
3 weeks ago
London, Greater London, United Kingdom Iceberg Cyber Security Full timeCompany Overview: Iceberg Cyber Security is a prominent player in the financial sector, known for its innovative approach and a compact global team that excels in its domain.Position Summary: We are seeking a Cyber Security Governance Lead who will be pivotal in shaping and enforcing Cyber Security policies and procedures that align with our risk management...
-
Governance and Compliance Manager
3 days ago
London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full timeJob Title: Governance and Report ManagerJob Summary:LT Harper - Cyber Security Recruitment is seeking an experienced Governance and Report Manager to join our team. The ideal candidate will have a strong background in governance leadership, risk management, compliance, auditing, and reporting.Key Responsibilities:Develop and implement a comprehensive...
-
Governance and Compliance Manager
2 days ago
London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full timeJob Title: Governance and Report ManagerJob Summary:LT Harper - Cyber Security Recruitment is seeking an experienced Governance and Report Manager to join our team. The ideal candidate will have a strong background in governance leadership, risk management, compliance, auditing, and reporting.Key Responsibilities:Develop and implement a comprehensive...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Location: Hybrid Working Employment Type: Permanent Full Time Grade Level: 5 At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the leading technology retailer in the UK, we take pride in the service our customers receive, thanks to our dedicated...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Location: Hybrid Employment Type: Permanent Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to experience outstanding technology. As the UK's leading tech retailer, we take pride in the exceptional service our customers receive, thanks to our dedicated team of...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Permanent Position - Hybrid Work Model Full-Time Role Grade Level 5 At Currys, we share a common goal: to empower everyone to experience outstanding technology. As the leading technology retailer in the UK, we take pride in the exceptional service our customers receive, thanks to our dedicated...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Location: Hybrid Employment Type: Permanent Work Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the leading technology retailer in the UK, we take pride in the outstanding service our customers receive, thanks...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Location: Hybrid Employment Type: Permanent Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to enjoy exceptional technology. As the UK's premier technology retailer, we take pride in the outstanding service our customers receive, thanks to our dedicated team...
-
London, Greater London, United Kingdom Currys Full timeInformation Security Compliance & Governance Lead Location: HybridEmployment Type: PermanentWork Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the leading tech retailer in the UK, we take pride in the service we provide to our customers, thanks to our dedicated team of 25,000...
-
London, Greater London, United Kingdom Currys Full timeInformation Security Compliance & Governance Lead Location: HybridEmployment Type: PermanentFull Time Grade Level: 5 At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the UK's leading tech retailer, we take pride in the service we provide to our customers, thanks to our dedicated team of 25,000 compassionate and...
-
Cyber Security Governance Manager
3 weeks ago
London, Greater London, United Kingdom Iceberg Cyber Security Full timeAbout the Company: Iceberg Cyber Security is a prominent player in the financial sector, recognized for its innovative approach and global reach. With a compact yet dynamic team, we are committed to excellence in cyber security.Role Overview: As the Cyber Security Governance Lead, you will be pivotal in shaping and enforcing the organization's cyber security...
-
London, Greater London, United Kingdom Currys Full timeInformation Security Compliance & Governance Lead Location: HybridEmployment Type: PermanentWork Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to experience exceptional technology. As the UK's premier technology retailer, we take pride in the service we provide to our customers, thanks to our dedicated team of...
-
London, Greater London, United Kingdom Conex Europe Full timeJob Summary:Conex Europe is seeking an experienced Information Security Governance and Compliance Manager to join our team. As a key member of our Information Security team, you will be responsible for maintaining the ISO27001 Information Security Management System across all regions and offices.Key Responsibilities:Maintain the ISO27001 Information Security...
-
London, Greater London, United Kingdom Conex Europe Full timeJob Summary:Conex Europe is seeking an experienced Information Security Governance and Compliance Manager to join our team. As a key member of our Information Security team, you will be responsible for maintaining the ISO27001 Information Security Management System across all regions and offices.Key Responsibilities:Maintain the ISO27001 Information Security...
-
Governance and Compliance Lead
1 month ago
London, Greater London, United Kingdom NFP People Full timeGovernance and Compliance LeadThis is an exciting opportunity for a Governance, Compliance and Policy specialist to join a small, friendly and growing charity.Position: Governance and Compliance LeadLocation: Remote – Occasional visits to the Office in the South EastHours: 15 Hours per week, FlexibleSalary: Pro rata £13, Full time equivalent :...
-
London, Greater London, United Kingdom Currys plc Full timeJob Summary:The Security Governance and Compliance Manager will be responsible for the successful delivery of our internal security best practices and regulatory compliance obligations that support the reduction of security risks and improved security maturity across Currys.Key Responsibilities:Perform assessments across all security processes to ensure...
-
Security Governance and Compliance Manager
23 hours ago
London, Greater London, United Kingdom Currys plc Full timeJob Summary:The Security Governance and Compliance Manager will be responsible for the successful delivery of our internal security best practices and regulatory compliance obligations that support the reduction of security risks and improved security maturity across Currys.Key Responsibilities:Perform assessments across all security processes to ensure...
-
Lead Cyber Security Risk Officer
3 weeks ago
London, Greater London, United Kingdom Iceberg Cyber Security Full timeAbout the Company: Iceberg Cyber Security is a prominent player in the financial sector, recognized for its innovative approach and small, agile global team.Role Overview: As the Cyber Security Governance Lead, you will be at the forefront of shaping and enforcing Cyber Security policies that align with the organization's risk management framework. This...
