Governance, Risk and Compliance Officer

**Job Title: Governance, Risk and Compliance Officer**

**Role Overview**:
Spirax Sarco Engineering plc is looking for an Information Security GRC Specialist who will be part of an energetic, dynamic, international team of Information Security and IT professionals supporting a global business and internal customer base.

**Your objectives and responsibilities will focus on**
- Providing guidance and advice to the business to support our compliance, privacy and risk reduction requirements
- Supporting compliance and risk reduction initiatives which includes educating the business in simple terms via a series of enterprise training & awareness initiatives
- Driving continuous improvements, synergies and collaboration across different teams and standardisation of the working practices and integration technologies used across all 4 business units of the Group
- Respond to Group security and compliance audits/assessments, following up with partners as required.
- Monitor the security and compliance queue for incoming customer requests (security evaluations or questions), ensuring that a ticket is created/maintained for all requests.
- Develop, maintain, and deliver our 3-year Training and Awareness roadmap.
- Supporting Third party risk reviews and subsequent maintenance and diligence of caseloads. Monitoring and supporting of metrics database
- Support the full lifecycle of Data Subject Access Request (DSAR) Requests, including the development of internal processes to streamline service delivery.
- Support the management of compliance with data protection and privacy laws / regulations to ensure enterprise-wide compliance and a culture of data protection throughout the company.
- Develop and maintain weekly statistics and relevant metrics across the GRC team capability stack.
- Support the delivery of an enterprise training & awareness program to educate the business on security risks.

**Your previous experience is likely to include.**
- Participating in customer security assessments, and other forms of security and compliance oversight
- Working knowledge of Information Security Management Systems (ISMS) and popular frameworks such as ISO 27001, NIST CSF, CIS 18 Controls
- Developing and delivering Data Protection processes that are business friendly
- Processing Data Subject Access Requests (DSAR) and supporting other key stakeholders through to conclusion
- Participating in audits, assessments and other forms of security and compliance oversight

**To be successful in this role you will**
- Demonstrate an understanding of cloud security and third-party security risks
- Be able to manage workload and priorities effectively
- Show a structured way of working and take a collaborative approach

Have proven interpersonal and communication skills

**About us**:
***Spirax-Sarco Engineering plc is a FTSE100 and FTSE4Good multi-national industrial engineering Group with expertise in the control and management of steam, electric thermal solutions, peristaltic pumping and associated fluid technologies.

Our Purpose is to create sustainable value for all our stakeholders as we engineer a more efficient, safer and sustainable world. Our technologies play an essential role in critical industrial processes and industrial equipment across industries as diverse as Food & Beverage, Pharmaceutical & Biotechnology, Power Generation, Semiconductors and Healthcare. With customers in 165 countries, we provide the solutions that sit behind the production of many items used in daily life, from baked beans to mobile phones

Our Purpose, supported by our inclusive culture and Values, unites us, guides our decisions and inspires us everywhere that we operate. We support our colleagues to make their difference for each other as well as customers, communities, suppliers, our planet and shareholders by creating a truly equitable working environment where everyone feels included.

**Benefits**

You will receive a competitive salary (and a discretionary bonus), flexible/hybrid working and excellent benefits including 27 days holiday allowance (before bank holidays), 3 days’ paid volunteering leave, comprehensive private healthcare, enhanced pension plan, life assurance, optional participation in a Share Ownership Plan, free onsite parking, flexible benefits, and access to a personal discounts’ portal. We also offer a range of additional support and benefits through our Everyone is Included Group Inclusion Plan, detailed below.

**Everyone is Included at Spirax-Sarco Engineering plc**

We are passionate about creating inclusive and equitable working cultures where everyone can be themselves and achieve their full potential. For us, that means supportive teams and strong relationships where everyone’s contribution is valued - across social and cultural backgrounds, ethnicities, ages, genders, gender identities, abilities, neurodiversity, sexual orientation, religious beliefs, and everything else that makes us human and unique.

We wan