Information Security Assurance & Compliance Analyst

The Information Security team is responsible for ensuring that JCB has the correct level of security integrity to protect our systems, information, personal data and people from cyber-attacks and unauthorised access. We are seeking a detail-oriented Assurance & Compliance Analyst to join our on-site team. This role is essential in ensuring our operations meet internal and external compliance requirements, including regulatory standards and industry best practices. You will work closely with IT, security, and operational teams to monitor, assess, and improve our compliance posture. This critical role is essential to ensure JCB is proactive in staying on top of its obligations and leading the security compliance activities across the group.

• Conduct regular audits and assessments to ensure compliance with internal policies and external regulations
• Maintain and update compliance documentation, including policies and procedures
• Maintain the Cyber Risk Register and surrounding process
• Support the implementation and monitoring of Cyber Essentials, GDPR, and other relevant standards
• Perform third-party supply chain reviews and onboarding
• Review new IT, OT, Cloud and SaaS platforms
• Collaborate with internal teams to identify and remediate compliance gaps
• Assist in preparing for external audits and certification processes
• Monitor regulatory changes and assess their impact on the organisation
• Deliver training and awareness sessions on compliance topics
• Report on compliance metrics and provide recommendations for improvement
• Arrange and manage third parties for security penetration tests on internal and external systems
• Support IT audits and internal investigations
• Manage Supply Chain and Dealer Network processes and compliance

• Passionate about cyber security and keeping up with the latest trends, threats and mitigations
• Previous experience in assurance, compliance, or audit roles
• Strong understanding of information security standards and regulatory frameworks
• Previous third-party assessment experience
• Excellent analytical and problem-solving skills
• Strong communication and report writing abilities
• Ability to work independently in a fast-paced, on-site environment
• Experience with compliance tools and audit management platforms
• Knowledge of UK data protection regulations including GDPR
• A proven IT background to understand and interpret findings and communicate to stakeholders
• Familiarity with OT environments is a plus
• Understanding of security frameworks such as NIST and Cyber Essentials
• Understanding of IT Service Management principles (ITIL is a plus)

Ordinarily, our Resourcing Team reviews and shortlists CVs. If shortlisted, you'll speak to one of our Recruiters to discuss the role further. Our interview process usually consists of an initial Teams interview followed by an in-person interview. We'll keep in touch throughout the process. If you have any questions, please get in touch at recruitment@jcb.com

This is your chance to join a company that values expertise not only in rewards but also in real employee care. At JCB you don't just get a competitive salary, 33 days' holiday and access to our company pension—you can also use our onsite gym, in-house doctor, dentist and visiting optician. We have an ULEV car scheme available for our employees too. Then there's the JCB Rewards Hub, which gives you discounts with high street retailers. Feel like biking to work? There's our Cycle to Work Scheme.

We value diversity and welcome applications from candidates from all backgrounds.

We're committed to ensuring our recruitment process is fair and inclusive. If you face any accessibility challenges with your online application and require additional support, you have the option of speaking to a member of our Recruitment Team who can support you to complete an application in an alternative format. If you would benefit from this support, please email recruitment@jcb.com, and a member of the team will be in touch.

Recruitment Agencies: JCB does not accept any speculative approaches to present candidates for advertised vacancies.