Head of Gov Risk + Compliance

Head of Gov Risk + Compliance

Location: ScottishPower HQ, Glasgow

Salary: £76-95K (plus up to 30% bonus, car allowance and family healthcare cover)

Permanent, Hybrid Working (2-3 days per week in office)

Due to the level of this position, successful candidates will be required to complete additional background checks and any offer is subject to passing such checks.

Help us create a better future, quicker

We're looking for a strategic leader in Cyber Resilience and Risk management to join our team at ScottishPower Renewables (SPR). This role is central to ensuring that cyber and data protection risks—especially those involving third parties—are identified, assessed, and governed throughout their lifecycle, with full alignment to regulatory requirements.

What you'll be doing

As the subject matter expert for Cyber resilience and risk management within SPR, you'll shape and deliver a vision and strategy that includes data Protection, third-party risk oversight and a continuous assurance programme. You'll establish governance forums across SPR, holding risk owners accountable and ensuring that our practices meet both internal and external expectations, including compliance with the NIS Directive.

You'll lead a team of specialists focused on cyber risk, governance, assurance, data protection and business continuity, work closely with colleagues across Global Offshore, Global Renewables, Corporate Security, UKIT, and other key areas. Your remit will include developing governance models, leading cyber audit engagements, and ensuring SPR's technology risk management aligns with global and local frameworks.

What we're looking for

We're seeking someone with deep expertise in cyber or information security governance, risk, and assurance—ideally backed by industry qualifications such as GICSP, CISSP, or CISM. You'll bring significant experience in leading cyber risk strategies and assurance programmes within complex, enterprise-scale environments. Familiarity with cyber security regulations in the UK energy sector and a strong grasp of frameworks and standards is essential.

This is a high-level position, and successful candidates will be required to complete additional background checks as part of the offer process.

If you're ready to lead strategic cyber risk initiatives and help shape the future of energy resilience, we'd love to hear from you.

What's in it for you

As well as a competitive salary which is reviewed annually, you can also enjoy a number of other benefits. With our pension scheme, we'll double match your contribution up to a company contribution of 10%.

At ScottishPower, we believe it's the little things we do in life that make a big difference. From helping you look after your family's wellbeing, save for your future and take personal steps for climate action – our benefits are designed to help you do just that - so that you have everything you need to take care of your world – today and tomorrow. That's why our benefits include:

• 36 days annual leave
• Holiday purchase – perfect your work/life balance with extra annual leave
• Share Incentive Plan and Sharesave Scheme
• Payroll giving and charity matched funding
• Technology Vouchers – save more and spread the cost of your technology purchases
• Count us in – pledge to reduce carbon emissions and help fight climate change
• Electric Vehicle Schemes – to help you transition to green/clean driving
• Cycle to Work scheme and public transport season ticket loans
• Options to purchase dental insurance, private medical insurance, health cash plan and annual health assessments
• Life Assurance (4x salary)
• Access to 'nudge' financial wellbeing support
• Plus shopping, leisure, restaurant and gym discounts, and unique employee deals on travel insurance and more

Why ScottishPower

ScottishPower is part of the Iberdrola Group, one of the world's largest integrated utility companies and a world leader in wind energy. With a commitment to generate all of our energy from renewable resources and a drive to create the energy infrastructure of the future, we're at the forefront of the journey to Net Zero and investing over £6m every working day to make this happen. With diverse opportunities across our businesses and a commitment to invest in our own internal talent, ScottishPower can offer people real career opportunities that meet personal and professional goals, in a global organisation.

Inclusion, diversity, and a social purpose are at the heart of everything we do. Together with our values, they bring us together into a stronger, more sustainable business with direct links to the communities we serve. It takes all kinds of people to build a large-scale business like ours, so whatever your background, you'll fit right in.

ScottishPower is committed to providing reasonable support or adjustments in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions, or who are neurodivergent or require pregnancy-related support.

Mobility

Please note that any applicant who is not a citizen of the country of the vacancy will be subject to compliance with the applicable immigration requirements to legally work in that country. If/when required, the Company will support the employee with the necessary Immigration requirements.

IMPORTANT

Advert will close at 23:59 GMT the day before Job Posting End Date below

November