Information Security Specialist - Risk & Compliance

1 week ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Your Purpose

As an Information Security Specialist within the Global Information Security team, you'll support the delivery of the GRC (Governance, Risk, and Compliance) security strategy. You'll work closely with global Information Security Officers and key stakeholders across the business to help manage cyber risk, maintain compliance with security standards, and support security initiatives.

This role is ideal for someone with foundational knowledge in information security-particularly in risk and compliance-who's eager to grow their expertise while contributing to the protection of business systems and data on a global scale.

Key Responsibilities

• Support compliance efforts for standards such as PCI-DSS, Cyber Essentials, DSPT, and others.
• Assist with internal audits, control assurance reviews, and completion of remedial actions.
• Help manage cyber risk registers, coordinate risk activities, and produce regular reports.
• Support third-party security assessments and vendor risk reviews.
• Review IT change requests and support day-to-day security governance activities.
• Assist with maintaining policies, procedures, and internal communication platforms.
• Contribute to the planning and delivery of security awareness and training programmes.
• Provide administrative support for security committees, community events, and task tracking tools like JIRA.
  
  

• At least 2 years of experience in information security, with a focus on risk and compliance.
• Strong organisational skills with the ability to prioritise and manage multiple tasks.
• Clear, confident communicator able to engage with stakeholders at all levels.
• Proactive, detail-oriented, and comfortable working independently or in a team.
• Familiarity with standards like PCI-DSS, DSPT, and security frameworks.
• Experience with tools like Microsoft Office, SharePoint, JIRA, and ServiceNow.
• Foundational cybersecurity qualifications (e.g., Security+, ISO 27001, etc.) are a plus.
• Experience in retail or healthcare industries is beneficial but not required.
  
  

• Seniority level
  Entry level

• Employment type
  Contract

• Job function
  Information Technology
• Industries
  Computer and Network Security

Referrals increase your chances of interviewing at Institute of Communication by 2x

Southampton, England, United Kingdom £28,000 - £28,000 4 weeks ago

Southampton, England, United Kingdom £35,000 - £35,000 3 weeks ago

Southampton, England, United Kingdom 4 days ago

Southampton, England, United Kingdom 2 weeks ago

Southampton, England, United Kingdom 2 weeks ago

Southampton, England, United Kingdom 2 weeks ago

Portsmouth, England, United Kingdom 4 hours ago

Chandler's Ford, England, United Kingdom 3 days ago

Lee-On-The-Solent, England, United Kingdom 1 week ago

Newport, England, United Kingdom 16 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.