Head of Cyber Security Compliance & Assurance

Reporting Line: Chief Information Security Officer

Contract type: Permanent

Grade: 4

Location: Wood Street, London

The Head of Cyber Security Compliance and Assurance is responsible for ensuring POL has a forward-thinking approach to compliance and assurance. They will oversee activities and processes that provide confidence in the effectiveness of security measures and proper risk management. The role involves providing assurance to Product Owners and senior leadership that products and services are resilient to cyber-attacks through independent assessments and adherence to best practices and standards.

This senior team member will develop and deliver functional strategies, embodying Post Office values and a Postmaster-first mindset.

We recognize that attracting the right talent is crucial for positive organizational change. Our benefits include:

• 27.5 days annual leave, increasing with tenure
• Up to 18% on target bonus opportunity
• Car allowance
• Generous pension contribution
• Life assurance
• Income protection after 12 months
• Support from our employee assistance programme and benefits platform
• Ongoing learning and development opportunities

We are committed to diversity and inclusion, fostering an inclusive workplace that values all perspectives. We believe that equity, diversity, and inclusion are vital to our success, and we strive to reflect the diverse communities we serve. As an equal opportunity employer, we celebrate differences and promote inclusivity and equal representation.

• Professional experience in IT, especially cybersecurity
• Experience in developing and maintaining cyber security compliance and assurance frameworks
• Knowledge of managing cyber risk
• Familiarity with IT Governance, Risk & Compliance, including standards like Cyber Essentials Plus, NCSC CAF, NIST, ISO27001, ITIL, PCI/DSS, and GDPR
• Experience managing and developing specialist teams
• Strong knowledge of IT control frameworks such as COBIT
• Experience implementing and monitoring controls in large organizations
• Expertise in cybersecurity and related areas
• Understanding of data privacy laws, governance, risk management, and budgeting

Post Office is a trusted community staple, evolving in a digital world. We seek authentic individuals who embrace challenges and drive change, sharing a purpose to serve our communities. Join us in making Post Office truly Everybody's Business.