Security Compliance Specialist

London
10 months ago
Applications closed

Related Jobs

View all jobs

Information Security & Risk Specialist

Information Security & Risk Specialist

Compliance, Security & Governance Specialist - Sales

GRC Specialist - Solihull

Information Security Specialist

Cyber Security Specialist – Training Course

Security Compliance Specialist

London

About the Role:

At Deliveroo, our mission is to build the definitive food company by transforming how our customers eat, making food more convenient and accessible. To Achieve this, we prioritise security to protect the data and money of our customers, employees, partners, riders, and investors. As a technology-driven leader in a rapidly expanding industry, we value autonomy, ownership, and innovation. Our small team makes a significant impact, tackling some of the most intriguing challenges out there.

We are seeking a pragmatic and motivated Security Compliance Specialist with a solid understanding of security policies, standards, awareness and compliance. In this hands-on role, you will support the development, implementation, and compliance monitoring of our information security policy suite. You will work on a variety of security policy implementation projects, directly influencing how Deliveroo operates securely, and engaging with stakeholders across the business to drive higher maturity.

What You'll Be Doing:

  • Develop and implement information security policies, standards, and guidance in collaboration with stakeholders.

  • Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2.

  • Coordinate responses to internal and external audits and liaise with key stakeholders.

  • Develop and deliver security policy awareness and training programs.

  • Assess policy compliance, track risk exposure, and support continuous compliance initiatives.

  • Produce management reports on security compliance and metrics for relevant committees.

    Requirements:

  • Minimum 3 years of experience in information security, ideally in a public tech company or regulated industry.

  • Experience in developing and implementing information security policies, standards and procedures.

  • Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2.

  • Strong skills in security metrics and reporting.

  • Ability to engage collaboratively with technical and non-technical stakeholders.

  • Excellent written and verbal communication skills.

  • Confidence in delivering awareness and training sessions.

    We’re also interested in…

  • A mix of consulting and industry experience in a relevant role.

  • Industry certification such as CISM, CRISC, CISO, or CISSP.

    Why Deliveroo?

    Our mission is to be the definitive food company. We are transforming the way the world eats by making food more convenient and accessible. We give people the opportunity to eat what they want, when and where they want it.

    We are a technology-driven company at the forefront of the most rapidly expanding industry in the world. We are still a small team, making a very large impact, seeking to answer some of the most interesting questions out there. We move fast, value autonomy and ownership, and we are always looking for new ideas.

    Workplace & Diversity

    At Deliveroo we know that people are the heart of the business and we prioritise their welfare. We offer a wide range of competitive benefits in areas including health, family, finance, community, convenience, growth and relocation.

    We believe a great workplace is one that represents the world we live in and how beautifully diverse it can be. That means we have no judgement when it comes to any one of the things that make you who you are - your gender, race, sexuality, religion or a secret aversion to coriander. All you need is a passion for (most) food and a desire to be part of one of the fastest growing startups in an incredibly exciting space

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.