Enable job alerts via email!

Head of Governance, Risk and Compliance - Info Sec - 12 Month FTC

JR United Kingdom

City Of London

On-site

GBP 70,000 - 120,000

Full time

2 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company is seeking a Head of Governance, Risk and Compliance in London for a 12 Month FTC. You will lead a small team and work closely with IT and compliance areas to enhance the information security framework. Ideal candidates will have extensive experience in security management, risk assessment, and strong leadership capabilities, ensuring robust security strategies are effectively implemented.

Qualifications

Experience managing information security services and compliance monitoring.
Understanding of security risk management concepts and frameworks.
Proven security expertise with strong leadership skills.

Responsibilities

Manage the BMS Information Security Control Framework.
Support the Global CISO in executing the cyber security strategy.
Coordinate security plans with third-party vendors.

Skills

Information Security Management

Risk Management

Security Communication

Incident Management

Leadership

Position Title: Head of Governance, Risk and Compliance (GRC), Info Sec – 12 Month FTC

Client:

BMS Group

Location:

London (City of London), United Kingdom

Job Category:

Other

EU work permit required:

Yes

Job Views:

Posted:

16.06.2025

Expiry Date:

31.07.2025

Job Description:

Summary of Position:

This position reports directly to the global CISO and manages a small in-house team responsible for planning, scheduling, monitoring, and reporting on information/cyber security activities. The role collaborates with IT, Group Risk and Compliance, HR, Facilities, and third parties.

Key Responsibilities & Accountabilities:

Support the Global CISO in maintaining and executing the cyber security strategy.
Take overall responsibility for information security risk and compliance.
Manage the BMS Information Security Control Framework.
Develop and maintain the Information Security governance and oversight target operating model.
Create policies and governance materials.
Own the Information Security Risk management processes.
Identify security threats and collaborate with technical teams on exposure.
Provide security expertise to IT and business operations.
Ensure security initiatives are current and risks are managed.
Investigate and review security breaches, including near misses, and recommend improvements.
Build relationships with internal users, managers, and external vendors.
Coordinate security plans with third-party vendors and ensure proper action on security outputs.
Manage cyber events, including notification, escalation, response, and review.
Adhere to policies, procedures, and training requirements.

Experience Required:

Managing information security services, especially service design and management.
Developing security controls, compliance monitoring, and treatment strategies.
Understanding of security risk management concepts.
Experience with security transformation programmes.
Building and supporting incident management frameworks.
Knowledge of security frameworks like NIST CSF/ISO-27001.
Leadership skills in an information security context.
Talent nurturing and retention.
Proven security expertise.
Excellent communication skills.
Vendor and third-party management experience.
Ability to prioritize multiple issues and work streams.
Understanding of culture change techniques for security improvements.
Ability to assess process change impacts on global strategies.
Managing sensitive investigations and incident processes.

Personally demonstrate the five BMS values and ensure team alignment.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs