IT Security Risk & Compliance Lead

Drax
7 months ago
Applications closed

Related Jobs

View all jobs

Information Security Specialist

Information Security Manager

Head of InfoSec GRC & Awareness

Information Security Manager

Governance, Risk & Compliance Officer

Security Compliance Manager

The IT Security Risk & Compliance Lead plays a central role across Cyber and Information security. The primary purpose of this role is to manage and influence all aspects of security risk management activity across the Group, but particularly in respect to IT and Information Security. You will also assist in the delivery of Security Policy, Data Classification, and Compliance Management in accordance with policy and regulatory requirements. 

You will help develop the compliance knowledge and skills through the rollout of tools, policies and procedures, formal training and coaching and mentoring, working with individual Project Teams and Asset Owners ensuring that they understand their security responsibilities. You will also deliver against the business strategy, the technical roadmap and objectives set out in the Security strategy – covering Operational Information, Cyber, Digital and Physical.

You'll need to have

• Previous experience working with IT Systems in a corporate environment. 

• Good knowledge of control frameworks such as ISO27001, ITIL (Information Technology Infrastructure Library), NIST, IEC 62443 and SABSA. 

• Good knowledge of Risk Management Methodologies such as ISO27005, IRAM2 and IEC (phone number removed)-2. 

• Strong technical skills across IT. 

• Ability to interpret regulations and laws and communicate effectively to all levels of the organisation.

• Excellent presentation, project management, problem-solving, training/coaching, and conflict resolution skills.

• Ability to track and manage numerous parallel projects and activities.

• Ability to work successfully in a cross-functional team environment. 

• Excellent stakeholder management.

There's been significant investment and growth throughout the Cyber and Information Security function, you'll be joining a high-calibre team in an environment where you'll be able to have real impact.

For full details please contact Tim Philpotts at Morson

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Products

Where to Advertise Cyber Security Jobs in the UK (2026 Guide)

Advertising cyber security jobs in the UK requires a different approach to most technical hiring. The candidate pool is small, heavily vetted and in high demand across government, financial services, critical national infrastructure and the private sector simultaneously. Many of the strongest candidates hold active security clearances, are not actively job-searching through general platforms, and move primarily through specialist networks and trusted referrals. General job boards reach a broad audience but lack the specificity that security professionals expect. Specialist platforms, government-affiliated channels and cleared candidate networks each serve a different part of the market. This guide, published by CybersecurityJobs.tech, covers where to advertise cyber security roles in the UK in 2026, how the main platforms compare, what employers should expect to pay, and what the data says about hiring across different role types.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.