Security Compliance Specialist

London
11 months ago
Applications closed

Related Jobs

View all jobs

Information Security Analyst

Security Architecture Lead

Infrastructure Specialist - Retail Technology

Saviynt Architect - IAM

Cyber Security Operations Manager

Commercial Services Business Partner

Security Compliance Specialist

London

About the Role:

At Deliveroo, our mission is to build the definitive food company by transforming how our customers eat, making food more convenient and accessible. To Achieve this, we prioritise security to protect the data and money of our customers, employees, partners, riders, and investors. As a technology-driven leader in a rapidly expanding industry, we value autonomy, ownership, and innovation. Our small team makes a significant impact, tackling some of the most intriguing challenges out there.

We are seeking a pragmatic and motivated Security Compliance Specialist with a solid understanding of security policies, standards, awareness and compliance. In this hands-on role, you will support the development, implementation, and compliance monitoring of our information security policy suite. You will work on a variety of security policy implementation projects, directly influencing how Deliveroo operates securely, and engaging with stakeholders across the business to drive higher maturity.

What You'll Be Doing:

  • Develop and implement information security policies, standards, and guidance in collaboration with stakeholders.

  • Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2.

  • Coordinate responses to internal and external audits and liaise with key stakeholders.

  • Develop and deliver security policy awareness and training programs.

  • Assess policy compliance, track risk exposure, and support continuous compliance initiatives.

  • Produce management reports on security compliance and metrics for relevant committees.

    Requirements:

  • Minimum 3 years of experience in information security, ideally in a public tech company or regulated industry.

  • Experience in developing and implementing information security policies, standards and procedures.

  • Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2.

  • Strong skills in security metrics and reporting.

  • Ability to engage collaboratively with technical and non-technical stakeholders.

  • Excellent written and verbal communication skills.

  • Confidence in delivering awareness and training sessions.

    We’re also interested in…

  • A mix of consulting and industry experience in a relevant role.

  • Industry certification such as CISM, CRISC, CISO, or CISSP.

    Why Deliveroo?

    Our mission is to be the definitive food company. We are transforming the way the world eats by making food more convenient and accessible. We give people the opportunity to eat what they want, when and where they want it.

    We are a technology-driven company at the forefront of the most rapidly expanding industry in the world. We are still a small team, making a very large impact, seeking to answer some of the most interesting questions out there. We move fast, value autonomy and ownership, and we are always looking for new ideas.

    Workplace & Diversity

    At Deliveroo we know that people are the heart of the business and we prioritise their welfare. We offer a wide range of competitive benefits in areas including health, family, finance, community, convenience, growth and relocation.

    We believe a great workplace is one that represents the world we live in and how beautifully diverse it can be. That means we have no judgement when it comes to any one of the things that make you who you are - your gender, race, sexuality, religion or a secret aversion to coriander. All you need is a passion for (most) food and a desire to be part of one of the fastest growing startups in an incredibly exciting space

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.