Security Supply Chain Assurance Manager

Social network you want to login/join with:

Drax Group

Northampton, United Kingdom

Other

Yes

568c6435b8d3

3

18.04.2025

02.06.2025

About the Role:

This is a security supply chain assurance role, reporting into the Head of InfoSec, Governance, Risk and Compliance. You’ll be part of the Information Security, Governance, Risk and Compliance Team (IGRC) but will work closely with a wide variety of business stakeholders ensuring that they understand and fulfil their responsibilities regarding third party risk and supply chain due diligence.

You’ll manage and influence all aspects of security supply chain assurance activities across the Group, delivering due diligence in accordance with business and regulatory requirements.

The role will deliver against the business strategy, the technical roadmap and the objectives set out in the Security strategy.

Additional responsibilities include:

1. Fulfilling line management responsibilities including personal development, setting of objectives and leave allocation.
2. Providing oversight and guidance to other team members conducting due diligence.
3. Understanding how systems and services will be used to assess whether they should be included within the scope of relevant regulatory obligations.
4. Determining whether Drax (or the vendors) standard contract terms and conditions need to be supplemented with additional security terms, conditions or contract schedules that are tailored to manage information/cyber risks.
5. Responsibility for the development and maintenance of the Security Framework Supply Chain Assurance Policy and artifacts.
6. Engaging, influencing and supporting business unit adoption/extension of the Framework, supporting implementation by providing guidance and practical methodologies.
7. Helping to manage and conduct periodic supplier reviews providing feedback to business/contract owners and procurement.
8. Effectively liaising with regulators, Drax teams, consultants and contractors to deliver against agreed targets.

Who we’re looking for

Ideally, you’ll have managerial experience within a security supply chain assurance role and have a good knowledge of control frameworks such as ISO27001, ISO27036-2, ISO22301, ITIL (Information Technology Infrastructure Library) and NIST.

You’ll need to have a structured, methodical and accurate approach with the ability to interpret relevant industry regulations and standards. Ideally, you’ll also be familiar with the development and maintenance of management systems.

This role requires strong communication and stakeholder management skills, with the ability to influence beyond your sphere of control.

Rewards and benefits

As you help us to shape the future, we’ve shaped our rewards and benefits to help you thrive and support your lifestyle:

1. Competitive salary
2. Discretionary group performance-based bonus
3. 25 days annual leave (plus Bank Holidays)
4. Single cover private medical insurance
5. Pension scheme

We’re committed to making a tangible impact on the climate challenge we all face. Drax is where your individual purpose can work alongside your career drive. We work as part of a team that shares a passion for doing what’s right for the future. With Drax you can shape your career and a future for generations to come.

Together, we make it happen.

At Drax, we’re committed to fostering an environment where everyone feels valued and respected, regardless of their role. To make this a reality, we actively work to better represent the communities we operate in, fostering inclusion, and establishing fair processes. Through these actions, we build the trust needed for all colleagues at Drax to contribute their perspectives and talents, no matter their background. Find out more about our approach.

How to apply

Think this role’s for you? Click the ‘Apply now’ button to begin your Drax journey.

If you want to find out more about Drax, check out our LinkedIn page to see our latest news.