Lead Security Compliance Manager

We are PXC, the UK's largest provider of wholesale connectivity. Our vision is to be the UK's #1 wholesale platform, a one-stop shop provider of connectivity, voice, cloud and security underpinned by the UK's most robust, secure, resilient and reliable network.

Born from the combination of Virtual1 and TalkTalk's wholesale services and national network business, we operate across our 3 core sites (Salford, London and Skopje, North Macedonia).

Our mission is clear, to be the UK's best company to work for and best to work with. We believe this success is driven by the power of our employees. We empower our people to become true experts in their field who embody our values every day: we care; we challenge; we commit.

About the Role

You will be part of an efficacious Security Risk Management and Governance team that exists in a strong and mature Security function within PXC's Technology and Security Business Unit. Reporting directly into the Head of Security Risk Management and Governance, you will be responsible for management of Information Security Management System and maintain compliance with the respective security standards.

Key Responsibilities

Working cross-functionally, this role is pivotal to the successful management and maintenance of PXC's several information security and resilience compliance certifications to provide assurance to key stakeholders, customers, and regulatory and legal bodies. Being an enabler to PXC, to provide services to customers in specific sectors and markets, safeguard existing revenue streams and help to promote PXC's cyber reputation. You will foster strong relationships across our Technology, IT, Security, and Internal Audit teams and facilitate our response to our external auditors.

Responsibilities will include:

• Maintain and continually improve PXC's external compliance, including mergers & acquisition's, Information Security Management System (ISMS) and compliance regime for security certifications (TSA, ISO27001, PCI, Cyber Essentials, External Audit IT General Controls).
• Oversee and manage the process for responding to incoming customer security questionnaires, as well as providing supporting information for any customer request for proposals and audits.
• Responsible for Security training and awareness activities for the organisation.
• Evaluate gaps between different versions of the security compliance standards and provide recommendations to align approaches.
• Analyse and interpret relevant and emerging compliance standards and regulations to ensure these are understood by the business and appropriate steps are taken to achieve compliance where relevant.
• Support NIST control maturity assessment.
• Support resilience activities and audits.
• Oversee and lead the liaison, preparation and coordination of external compliance and regulatory audits, ensuring they are run effectively and efficiently.

What Will Make You Successful in This Role?

• Proven experience on managing stakeholders and driving compliance with security standards.
• Extensive experience in security with demonstrable compliance experience.
• ISO27001 LA/LI, PCI implementer and CISA certificates are essential.
• ISO22301 LA/LI certificate is desirable.
• CISSP, CISM and/or CRISC desirable.
• Telecoms experience including awareness of Telecom Security Act advantageous.

How we look after our employees

• Our brand new "PXC Flex" benefit launched in January 2025, which includes Flex30, an additional 30 hours* of leave every year for you to use how you wish
• Our hybrid working policy offers you flexibility to work from home as well as connecting with your colleagues in one of our accessible and collaborative office spaces
• A starting holiday allowance of 25 days* holiday and up to 10 extra days* leave via our holiday purchase scheme
• Free private healthcare for all employees, competitive pension scheme and the opportunity to earn bonus
• Free broadband for all employees plus gifts for major life events such as marriages and births
• Flexible salary sacrifice scheme including dental, gym plus a huge range of shopping and leisure discounts so you can save even more cash
• A range of inclusive employee networks to help integrate employees into life at PXC

(* Days and hours are based on a full-time employee's working pattern and leave is pro-rated for part-time employee)

At PXC, we know that diversity means success and innovation. We want our workplace to reflect the communities and customer we serve. Being inclusive is part of our DNA; we are all 100% human, and we create a culture where you can truly be yourself.

We're also not your usual 9-5. We are a dynamic workplace and we want to talk to you about how you like to work.