Head of Information Security Risk and Compliance
2 weeks ago
Please note:
Thanks for your interest in this role - j
ust to be clear, this is not a job working at ivee.
This is a live role with a client, listed through ivee.
ivee is exclusively for people restarting, pivoting, or returning to work within the UK. Please do not apply if you are outside the UK.
Have you taken a career break or are you looking to pivot into something new?
At ivee, we're rebuilding the path back into work for people restarting, changing direction, or finding their way back onto the career ladder. We know traditional platforms are built for those already in work - we're built for everyone else.
Our community helps you rebuild confidence, refresh your skills, and connect with employers who value non-linear careers. Through hands-on upskilling, mentoring, and direct access to flexible, vetted roles, ivee helps you prepare for, and land, the right opportunity.
Press apply to express your interest in ivee and apply for this role on our platform:
Overview
This is Europe's leading independent rail and coach platform, driving the future of sustainable travel through technology. With over
125 million monthly visits
and partnerships across
270+ transport operators
, this award-winning app makes travel smarter, simpler, and greener.
They're now seeking a
Head of Information Security Risk and Compliance
to lead the company's governance, risk, and compliance (GRC) strategy. Reporting to the CISO, you'll head up a team of analysts and associates to ensure their information security risk and compliance framework remains robust, forward-looking, and aligned with international standards such as
ISO 27001, ISO 22301, and PCI DSS
.
This is a pivotal leadership role — influencing executive decision-making, collaborating across Legal, Engineering, and Procurement, and embedding a culture of security awareness across the business.
The Role
As the Head of Information Security Risk and Compliance, you will:
- Lead and evolve the company's
Information Security Management System (ISMS)
and
Business Continuity Management System (BCMS)
. - Manage, mentor, and develop a high-performing Risk and Compliance team.
- Embed information security governance across business operations and strategic projects.
- Oversee
third-party and supplier risk management
, ensuring security controls are maintained throughout procurement and onboarding. - Deliver data-driven, high-quality risk and compliance reporting to senior stakeholders and leadership.
- Act as a trusted advisor to executives, influencing strategic decision-making with actionable insights.
- Ensure compliance with key standards and regulations (ISO 27001, ISO 22301, PCI DSS, GDPR).
- Partner with Legal, Engineering, and Procurement to align technology and security initiatives.
- Champion organisation-wide security awareness and governance training programmes.
- Maintain and communicate up-to-date information security policies that adapt to new risks and threats.
About You
You are an experienced security leader with the vision and authority to shape governance frameworks across a fast-moving, global business. You're analytical, collaborative, and capable of translating complex risk landscapes into practical, actionable strategies.
You will:
- Have extensive experience in
information security risk and compliance management
, ideally within a regulated or technology-driven organisation. - Demonstrate strong leadership, with a proven record of developing and motivating teams.
- Be fluent in
ISO 27001
,
ISO 22301
,
PCI DSS
,
GDPR
, and similar frameworks. - Possess excellent analytical and critical thinking skills, with the ability to assess, quantify, and communicate risk.
- Be comfortable engaging with executive stakeholders, presenting complex information clearly and credibly.
- Have experience integrating risk management into
day-to-day business operations
. - Take a collaborative, pragmatic approach - balancing compliance with commercial priorities.
- Bring excellent written and verbal communication skills and strong stakeholder management experience.
Please press apply to access the full job description and apply for this role.
-
Information Risk Specialist
2 weeks ago
London, United Kingdom Information Security Solutions Full timeCompany: Financial Services Location: Hybrid - City of London Reports to Information Risk Manager **Salary**: £80,000 Benefits: Generous No. Required: 1 Start Date: ASAP **The Role** As the Information Security Risk Specialist, you shall support the Information Risk Manager which has responsibility for all Governance Risk and Compliance activities in the...
-
Head of Risk
6 days ago
London, United Kingdom AJ Fox Compliance Full timeWe are working with a fantastic, fast-growing independent UK law firm to hire a Head of Risk & Compliance to join their team in London. This position will be responsible for the firm’s compliance and risk management frameworks. There will also be the opportunityto take on the titles of COLP, COFA, and MLRO. Key roles and responsibilities will include: -...
-
Head of Information Security
4 days ago
London, United Kingdom Birkbeck University of London Full timeAre you ready to take on a pivotal role in safeguarding the future of information security? Join Birkbeck, University of London, as our Head of Information Security & Governance this Autumn 2024. As part of our Information Services department, you will lead a team dedicated to ensuring the confidentiality, integrity, and availability of our institutional...
-
Information Security Specialist
7 days ago
London Area, United Kingdom Morson Edge (Financial Services) Full time £80,000 - £90,000 per yearGRC Specialist - Information Security, ISO 27000, NIST, GDPR, CISM, CISSP - London£80,000 - £90,000 + bonus / 2 days WFHA leading London Market Specialty Insurer is seeking a Security GRC Specialist to join their collaborative security team. You will support the Head of Security GRC in strengthening governance, risk, and compliance across the organisation,...
-
Head of Information Security Risk
2 weeks ago
London, United Kingdom Parliamentary Digital Service Full timeEmployer - Parliamentary Digital Service Directorate - Office of the MD Band / Grade - A1 Salary - Circa £75,000 per annum Contract Type - Permanent Location - Hybrid (on-site and remote) Security Level - Security Check (SC) Interview Format - Presentation + Panel Interview (Remote) Additional File**The Opportunity** The Parliamentary Digital...
-
Head of Information Security
1 week ago
London, United Kingdom Napier AI Full timeNapier is a new breed of financial crime compliance technology specialist. Our AI enhanced platform - Napier Continuum - transforms compliance from legal obligation to competitive edge. At Napier, our mission is to fight financial crime through automation & AI. We believe that by automating the detection and prevention of financial crime, we can make the...
-
Head of Information Security
12 hours ago
London, United Kingdom Carousel Consultancy Ltd Full time**Head of Information Security - Successful Law Firm - up to £110k + benefits - London / Hybrid Working** We’re looking for an **Information Security specialist,**with extensive experience in a similar role within a professional services environment and CISSP or CISM certification, to join a successful London Law Firm as their **Head of Information...
-
Information Security Risk
2 days ago
London, United Kingdom Cyberark Software Full timeInformation Security Risk & Compliance SpecialistAbout CyberArk:CyberArk (NASDAQ: CYBR ), is the global leader in Identity Security . Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and...
-
Information Security Officer
7 days ago
London Area, United Kingdom Form3 Full time £60,000 - £120,000 per yearTHE ROLEAs an Information Security Officer at Form3, you'll play a pivotal role in strengthening and evolving our information security governance, risk, and compliance practices. Working within the Information Security team, you'll help ensure that Form3 continues to operate securely and maintain the trust of our customers and partners.You'll work closely...
-
Head of Information Security
1 week ago
London, Greater London, United Kingdom Diesta Full time £80,000 - £120,000 per yearAbout Diesta:Diesta is building the next-generation payment processor for the global insurance industry. We are a fast-growing startup solving complex data challenges for top-tier insurers and brokers across the UK, EU, and soon the US. Our platform transforms how insurance payments are managed, making them faster, smarter, and more transparent.The Role:The...
