Security Engineer - Governance, Risk and Compliance (GRC), London New London

Tbwa Chiat/Day Inc
London
1 month ago
Create job alert

Security Engineer - Governance, Risk and Compliance (GRC), London

London

Senior Security Engineer - Governance, Risk and Compliance (GRC) -London

Isomorphic Labs is a new Alphabet company that is reimagining drug discovery through a computational- and AI-first approach.

We are on a mission to accelerate the speed, increase the efficacy and lower the cost of drug discovery. You'll be working at the cutting edge of the new era of 'digital biology' to deliver a transformative social impact for the benefit of millions of people.

Come and be part of a multi-disciplinary team driving groundbreaking innovation and play a meaningful role in contributing towards us achieving our ambitious goals, while being a part of an inspiring, collaborative and entrepreneurial culture.

Your impact

As a Senior Security Engineer - GRC, you will play a crucial role in establishing and maintaining a robust security governance framework at Isomorphic Labs. Your work will be instrumental in ensuring the organisation's compliance with industry standards and regulations, enabling research programs and building trust with key partners. You will contribute to fostering a culture of security awareness and operational excellence, directly impacting the company's ability to achieve its ambitious goals.

What you will do

  • Spearhead the development of IsoLabs' Information Security Management System (ISMS) and guide the organisation through ISO 27001 certifications.
  • Implement and continuously improve security policies and controls, ensuring alignment with industry best practices and operational excellence.
  • Monitor and maintain compliance with regulations, third-party requirements, and internal security policies, identifying and proactively addressing potential gaps.
  • Partner with TechOps, Data Engineering, Legal and Product teams to implement robust data governance solutions, encompassing data labelling, access control, audit trails, de-identification, and data lifecycle management.
  • Lead Infosec projects in collaboration with Machine Learning and Drug Discovery teams.
  • Develop and execute internal audit programs, and effectively respond to external audits and due diligence requests.
  • Actively contribute to IsoLabs’ security awareness program, fostering a strong security culture throughout the organisation.
  • Manage Vendor Security Assessment operations and drive continuous improvement of these processes.
  • Support the implementation and enhancement of Incident Management and Vulnerability Management policies.
  • Partner with Legal and Privacy teams to ensure security practices align with legal and regulatory requirements, particularly concerning data privacy and protection.
  • Establish and report on Key Performance Indicators (KPIs) to demonstrate the effectiveness of security operations on business outcomes.

Skills and qualifications

  • Strong IT and cybersecurity technical background, including experiences with major cloud platforms.
  • Demonstrated experience developing and implementing security policies, standards, and procedures.
  • Solid understanding of risk management frameworks, and industry-specific compliance requirements (e.g., ISO/IEC 27001, GDPR, HITRUST).
  • Excellent communication and interpersonal skills, with the ability to explain complex security concepts to diverse audiences.
  • Practical experience with data governance and privacy controls, including data classification, audit trail, de-identification and data lifecycle management.
  • Strong analytical and problem-solving skills, with the ability to differentiate true risks from over-compliance, develop creative solutions to balance business needs with risk mitigation.
  • Extensive experience with external audits and leading certification processes.
  • Proven ability to act as a project manager and collaborate effectively with cross-functional teams.
  • Demonstrated ability to effectively manage and prioritise multiple projects simultaneously, meeting deadlines and delivering results.

Nice to have:

  • Experience building and operating a Trusted Research Environment and/or Trusted ML Environments.
  • Experience in the BioTech and Pharma industry.
  • Experience streamlining Vendor Security Assessments (VSAs).
  • Familiarity with the unique challenges of a fast-paced, high-growth environment.
  • Solid understanding of security in a computational- and AI-first environment.
  • Experience protecting sensitive scientific and personal data.
  • Experience with security automation tools and technologies.
  • Contribution to open-source security projects or participation in security communities.

Culture and values

What does it take to be successful at IsoLabs? It's not about finding people who think and act in the same way, but we do have some shared values:

Thoughtful: Thoughtful at Iso is about curiosity, creativity and care. It is about good people doing good, rigorous and future-making science every single day.

Brave: Brave at Iso is about fearlessness, but it’s also about initiative and integrity. The scale of the challenge demands nothing less.

Determined: Determined at Iso is the way we pursue our goal. It’s a confidence in our hypothesis, as well as the urgency and agility needed to deliver on it. Because disease won’t wait, so neither should we.

Together: Together at Iso is about connection, collaboration across fields and catalytic relationships. It’s knowing that transformation is a group project, and remembering that what we’re doing will have a real impact on real people everywhere.

Creating an inclusive company

We realise that to be successful we need our teams to reflect and represent the populations we are striving to serve. We’re working to build a supportive and inclusive environment where collaboration is encouraged and learning is shared. We value diversity of experience, knowledge, backgrounds and perspectives and harness these qualities to create extraordinary impact.

We are committed to equal employment opportunities regardless of sex, race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, pregnancy or related condition (including breastfeeding) or any other basis protected by applicable law.

It’s hugely important for us to be able to share knowledge and establish relationships with each other, and we find it easier to do this if we spend time together in person. This is why we’ve decided to follow a hybrid model, and for full time positions we wouldrequire you to be able to come into the office 3 days a week(currently Tue, Wed, and one other day depending on which team you’re in). For part time positions this may vary.

Please note that when you submit an application, your data will be processed in line with our privacy policy.

#J-18808-Ljbffr

Related Jobs

View all jobs

Security Engineer, Senior, London, Bank 75k

Security Engineering Manager - Detection Engineering

Security Engineer

Security Engineer

Security Engineer

Security Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

Careers

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Careers

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.