You will be a seasoned Information Security professional able to support and maintain governance and leading frameworks such as NIST CSF and the UK Cyber Assessment Framework (CAF) to identify, assess and manage risks across the Group. You will develop risk metrics (KPIs/KRIs), deliver security training and awareness programmes and lead third-party cyber, information and AI security due diligence. This would include ongoing monitoring of risks and incidents. The role also involves supporting audits, driving continuous improvement across policies and controls, and implementing monitoring solutions using Microsoft Purview and DLP. Working closely with the CISO and Cyber Security team, you will contribute to governance, reporting and incident response, while building strong stakeholder relationships across IT, Risk and the wider business.

in a nutshell, responsibilities include:

• Maintain and enhance Information Security governance frameworks ali...