Information Security Regulatory Support Lead

Information Security Regulatory Support Lead
Location: Remote, UK
Length: 6 Months
Rate: £550 per day (Umbrella) Inside IR35
Hours: Normal Business hours

You will oversee and coordinate regulatory readiness and strategic focus area support efforts across the EMAP region. You will lead the support team, driving the execution of NIS2 readiness and broader regulatory governance support activities as directed by the EMAP Information Security Regulatory Governance Specialist. You will be responsible for engaging with a wide range of stakeholders to deliver the required outcomes, obtaining evidence of assurance activities and adherence to security policy/standards across the EMAP region, assessing both technical and organisational controls against Information Security Regulatory requirements, producing regular reporting on support activity progress to the Information Security Regulatory Governance Specialist for EMAP and directing all day-to-day activities in support of Information Security Regulatory Governance efforts to ensure that agreed objectives are delivered within the engagement timescales.

• A bachelor’s degree in computer science, management information systems, relevant field, or equivalent demonstrable experience
• Experience of performing IT/Information Systems & Information Security Governance Auditing.
• 8+ years of experience in Information Security and/or Information Technology.
• Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent.
• Familiarity with industry standards and frameworks e.g., NIST 800-53, ISO 27001/27002, CIS Controls, COBIT.
• Experience with risk assessments, and familiarity with IT systems, cybersecurity practices and domains.
• Strong analytical, problem solving and critical thinking skills with meticulous attention to detail.
• Excellent verbal and written communication skills.
• Ability to work both independently and collaboratively within a team environment.

• Lead and manage support activities focused on NIS2 readiness and regulatory assurance.
• Assess current policies, standards, processes, and technical environments against NIS2 and other applicable regulations.
• Support as required on entity-specific assessments and asset-level assurance testing.
• Coordinate NIS2 registrations and incident reporting readiness across all entities.
• Engage with stakeholders across business units, project teams, and EGSO to align support efforts.
• Document regulatory posture, ISRG priority, gaps, risks, sustainability of compliance efforts and ongoing maintenance of regulatory obligations.
• Provide regular progress updates to the EMAP Information Security Regulatory Governance Specialist

• Working knowledge of current and upcoming Information Security Regulations in the EMAP Region (NIS2, DORA, CRA etc.)
• Strong critical thinking and problem-solving abilities.
• Ability to facilitate meetings, engage with stakeholders and deliver desired outcomes.
• Ability to collect, validate, analyse, and translate varied data points into evaluative conclusions.
• Sound judgment in ambiguous or undefined scenarios.
• Ability to research and apply knowledge about current and emerging regulations and supporting standards as required by support activities