Information Security Compliance and Governance Lead
4 weeks ago
Information Security Compliance & Governance Lead
Location: Hybrid Working
Employment Type: Permanent
Full Time
Grade Level: 5
At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the leading technology retailer in the UK, we take pride in the service our customers receive, thanks to our dedicated team of 25,000 passionate colleagues. Together, we learn and grow, celebrating both the significant and the everyday achievements that make our work fulfilling.
The Information Security Compliance and Governance Lead will oversee the effective implementation of our internal security protocols and regulatory compliance requirements, aimed at minimizing security vulnerabilities and enhancing security maturity across Currys.
Role Overview:
Key Responsibilities:
• Conduct assessments across all security protocols. Where compliance is achieved, collaborate with stakeholders to ensure ongoing maintenance of controls.
• Cultivate and sustain relationships throughout Currys to promote the security agenda and remain informed about industry developments.
• Assist in security governance initiatives across the organization, proposing and collaborating with stakeholders on continuous improvement efforts.
• Governance and control are increasingly critical within the Currys technology division. This role will drive the governance strategy within Information Security:
• Execute maturity and capability evaluations against NIST and ISO27001/2, effectively presenting the findings to the technology senior leadership team.
• Develop business cases for key compliance objectives (NIST/ISO/PCI) and assist in managing these projects.
• Document controls implemented across Information Security, ensuring they are updated as capabilities and processes evolve over time.
• Manage the policy and standards exceptions process, collaborating with subject matter experts in Information Security and technology risk to align exceptions with risk management. Ensure that policies and standards are consistent with hardening standards for various technologies.
• Own and update Information Security policies and standards in collaboration with subject matter experts.
This role requires the individual to foster beneficial internal and external relationships while managing one or more work streams within the information security domain, ensuring delivery meets the agreed scope, quality, time, and budget criteria. Proactive management of associated risks and issues is essential, alongside active engagement with business and technical stakeholders across the organization.
Required Qualifications:
• Extensive knowledge of PCI DSS is essential, as a significant portion of this role will focus on this standard.
• Proficient understanding of ISO27001 and/or NIST CSF frameworks, with the ability to conduct audits and familiarity with auditing techniques.
• Strong relationship-building skills and effective communication with technical, commercial, and customer stakeholders.
• Articulate in both verbal and written communication, capable of presenting well-reasoned arguments.
• Familiarity with key security technologies, including vulnerability management, security information and event management, intrusion detection, and access auditing.
We recognize that our people are the cornerstone of our success. That’s why we continually seek ways to reward outstanding performance. In addition to 30 days of annual leave (including bank holidays) and a competitive pension scheme for permanent employees, we offer a range of benefits tailored to your needs:
• Company Bonus
• Hybrid Working Options
• Company Pension Scheme
Why Join Us:
Become part of our team, and we will support you at every stage, helping you develop the career you desire through new opportunities, ongoing training, and lifelong skills.
Not only can you shape your own future, but you can also help us take charge of ours. As the largest recycler and repairer of technology in the UK, we are positioned to make a meaningful impact on both people and the planet.
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Location: Hybrid Employment Type: Permanent Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to experience outstanding technology. As the UK's leading tech retailer, we take pride in the exceptional service our customers receive, thanks to our dedicated team of...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Permanent Position - Hybrid Work Model Full-Time Role Grade Level 5 At Currys, we share a common goal: to empower everyone to experience outstanding technology. As the leading technology retailer in the UK, we take pride in the exceptional service our customers receive, thanks to our dedicated...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Location: Hybrid Employment Type: Permanent Work Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the leading technology retailer in the UK, we take pride in the outstanding service our customers receive, thanks...
-
London, Greater London, United Kingdom Currys plc Full timeInformation Security Compliance & Governance Lead Location: Hybrid Employment Type: Permanent Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to enjoy exceptional technology. As the UK's premier technology retailer, we take pride in the outstanding service our customers receive, thanks to our dedicated team...
-
London, Greater London, United Kingdom Currys Full timeInformation Security Compliance & Governance Lead Location: HybridEmployment Type: PermanentWork Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the leading tech retailer in the UK, we take pride in the service we provide to our customers, thanks to our dedicated team of 25,000...
-
London, Greater London, United Kingdom Currys Full timeInformation Security Compliance & Governance Lead Location: HybridEmployment Type: PermanentFull Time Grade Level: 5 At Currys, we share a common goal: to enable everyone to experience exceptional technology. As the UK's leading tech retailer, we take pride in the service we provide to our customers, thanks to our dedicated team of 25,000 compassionate and...
-
London, Greater London, United Kingdom Currys Full timeInformation Security Compliance & Governance Lead Location: HybridEmployment Type: PermanentWork Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to experience exceptional technology. As the UK's premier technology retailer, we take pride in the service we provide to our customers, thanks to our dedicated team of...
-
London, Greater London, United Kingdom Iceberg Cyber Security Full timeAbout the Company: Iceberg Cyber Security is a prominent player in the financial markets, recognized for its innovative approach and agile operations. With a compact global team, we are at the forefront of the industry, driving significant advancements in cyber security.Role Overview: As the Cyber Security Governance Lead, you will be pivotal in shaping the...
-
London, Greater London, United Kingdom Conex Europe Full timeJob Summary:Conex Europe is seeking an experienced Information Security Governance and Compliance Manager to join our team. As a key member of our Information Security team, you will be responsible for maintaining the ISO27001 Information Security Management System across all regions and offices.Key Responsibilities:Maintain the ISO27001 Information Security...
-
London, Greater London, United Kingdom Conex Europe Full timeJob Summary:Conex Europe is seeking an experienced Information Security Governance and Compliance Manager to join our team. As a key member of our Information Security team, you will be responsible for maintaining the ISO27001 Information Security Management System across all regions and offices.Key Responsibilities:Maintain the ISO27001 Information Security...
-
Information Security Governance
1 month ago
London, Greater London, United Kingdom Precise Placements Full timeInformation Security Governance & Compliance ManagerOur leading law firm client are looking to recruit an Information Security Governance & Compliance Manager on a permanent basis to maintain the ISO27001 Information Security Management System across all regions and offices, including coordinating and maintaining information security activities, reviewing...
-
Security Compliance and Governance Lead
4 weeks ago
London, Greater London, United Kingdom Currys Full timeSecurity Compliance & Governance Lead Location: HybridEmployment Type: PermanentWork Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to experience exceptional technology. As the UK's leading technology retailer, we take pride in the service our customers receive, thanks to our dedicated team of 25,000 passionate...
-
Security Compliance and Governance Lead
4 weeks ago
London, Greater London, United Kingdom Currys Full timeSecurity Compliance & Governance Lead Location: HybridEmployment Type: PermanentWork Schedule: Full Time Grade Level: 5 At Currys, we share a common goal: to empower everyone to experience outstanding technology. As the leading tech retailer in the UK, we take pride in the exceptional service our customers receive, thanks to our dedicated team of 25,000...
-
London, Greater London, United Kingdom Nityo Infotech Full timeAbout the RoleWe are seeking an experienced Information Security Training Lead to join our team at Nityo Infotech. As a key member of our organization, you will be responsible for leading our information security training initiatives and ensuring compliance with relevant regulatory frameworks and standards.Key ResponsibilitiesDevelop and implement...
-
London, Greater London, United Kingdom Nityo Infotech Full timeAbout the RoleWe are seeking an experienced Information Security Training Lead to join our team at Nityo Infotech. As a key member of our organization, you will be responsible for leading our information security training initiatives and ensuring compliance with relevant regulatory frameworks and standards.Key ResponsibilitiesDevelop and implement...
-
Information Security Training and Compliance Lead
20 hours ago
London, Greater London, United Kingdom Nityo Infotech Full timeAbout the RoleWe are seeking an experienced Information Security Training Lead to join our team at Nityo Infotech. As a key member of our organization, you will be responsible for leading our information security training initiatives and ensuring compliance with relevant regulatory frameworks and standards.Key ResponsibilitiesDevelop and implement...
-
Information Security Training and Compliance Lead
21 hours ago
London, Greater London, United Kingdom Nityo Infotech Full timeAbout the RoleWe are seeking an experienced Information Security Training Lead to join our team at Nityo Infotech. As a key member of our organization, you will be responsible for leading our information security training initiatives and ensuring compliance with relevant regulatory frameworks and standards.Key ResponsibilitiesDevelop and implement...
-
London, Greater London, United Kingdom Nityo Infotech Full timeAbout the Role:Nityo Infotech is seeking an experienced Information Security Training Lead to join our team. As a key member of our organization, you will be responsible for developing and implementing information security training programs to ensure the company's compliance with relevant regulatory frameworks and standards.Key Responsibilities:Develop and...
-
London, Greater London, United Kingdom Nityo Infotech Full timeAbout the Role:Nityo Infotech is seeking an experienced Information Security Training Lead to join our team. As a key member of our organization, you will be responsible for developing and implementing information security training programs to ensure the company's compliance with relevant regulatory frameworks and standards.Key Responsibilities:Develop and...
-
Lead Cyber Security Governance Specialist
4 weeks ago
London, Greater London, United Kingdom Iceberg Cyber Security Full timeCompany Overview: Iceberg Cyber Security is a prominent player in the financial sector, known for its innovative approach and a compact global team that excels in its domain.Position Summary: We are seeking a Cyber Security Governance Lead who will be pivotal in shaping and enforcing Cyber Security policies and procedures that align with our risk management...
