Security Governance Analyst

We’re looking for a Security Governance Analyst to join us in either London or Reading

We are seeking a Security Governance Analyst to join our expanding Security team. This role will form a critical part of the Liberty Global Security team and be responsible for supporting the development and enhancement of our security governance approach in line with our business, legal, and regulatory requirements and report into the Senior Manager for Security Governance. The role will also provide critical support for our security certification roadmap (including ISO 27001).

This role forms part a critical part of the Information Security team, and in partnership with a range of subject matter experts, will be instrumental in developing and enhancing our policies, standards, and procedures. The overarching objectives for team is to understand and to drive the security maturity across LG’s central business, as well as be the primary security interface for colleagues across the business. To be able to successfully deliver against this objective, effective security governance is critical.

This role is perfect for someone that is passionate about security, is great at building new relationships, and wants to make a difference to the security maturity of the organisation.

What will you be doing?

• Collaborate with stakeholders across LG Central to develop, review, and update information security policies, standards, guidelines, and procedures in alignment with industry best practices and regulatory requirements.
• Ownership of the Security Governance documentation refresh and review cycle; ensuring stakeholders are held to account for timely review and update and support the delivery and deployment of our Governance, Risk, and Control technology capability, including the delivery of regular and continuous control monitoring.
• Authoring and publishing high quality and accurate security governance documentation. Act as a security governance subject matter expert to provide advice to internal and external stakeholders on our security policies and standards and to support the efficient delivery of technical security documentation, minimizing the effort required and impact on our wider stakeholders.
• Build awareness of the security legal and regulatory landscape, and research emerging requirements that may impact our information security control requirements. Identify and articulate opportunities to enhance security controls across the organisation, feeding these into our strategic security improvement plans where necessary.
• Collaborate with cross-functional teams to understand our current levels of compliance against our information security policies and standards, through regular engagement and assessment.
• In collaboration with our Security Academy, deliver high quality security awareness and training content that aligns to our information security control requirements, to promote a security aware culture throughout the organisation.

We tend to look for people with:

Essential:

• Good knowledge of best practice information security controls and the potential impact of controls on business operations.
• Good understanding of security frameworks (e.g. ISO 27001, NIST etc.).
• Excellent attention to detail and strong written and verbal communication skills in English.
• Ability to translate technical guidance into clear, actionable requirements.
• Skilled at identifying security risks and exposures as well as remedial controls and processes.
• Experience of working with technical and non-technical stakeholders to identify and embed security controls in line with business risk appetite.
• Ability to work independently to deliver high quality support to senior stakeholders and collaborate with the wider team.
• Ability to work collaboratively with a wide range of stakeholders across different locations and cultures as a strong team player that enjoys collaborative problem solving.

Desirable:

• Experience of supporting security governance initiatives within a telecommunications organisation.
• Exposure to, and experience in, technical security disciplines (e.g. Security Architecture, Threat Intelligence, Vulnerability Management).
• Experience in researching new or emerging security requirements (e.g. new regulation or technology).
• CompTIA Security+.
• Achieved and willing to work towards - Certified Information Security Manager (CISM) / Certified Information Systems Security Professional (CISSP).

What’s in it for you?

• Competitive salary + Bonus **where applicable**
• Matched pension contribution up to 10%
• 25 days annual leave with the option to purchase 5 more and paid volunteering.
• Access to physical and mental health benefits such as the Calm app, personal medical, critical illness cover and dental insurance.
• Access to our car benefit scheme.
• Professional development including upskilling, mentoring, and access to online learning.
• Great office and hybrid work environment.
• The chance to join an innovative, fast-paced and passionate team.

Who we are:

Join Liberty Global and Shape Tomorrow’s Connections Today!

Liberty Global is a dynamic team of veteran operators and investors committed to generating and delivering value through the strategic management of our three platforms: Liberty Telecom, Liberty Growth and Liberty Services.

We prioritize diversity, equity, and sustainability, using technology for good. If you're curious, resilient and have a limitless mindset, join our high-performing team.

Liberty Global is an equal opportunity employer, committed to an inclusive environment and accommodating all candidates. We’re eager to hear from you, no matter your background.

This Direct Search is handled exclusively by Liberty Global. We kindly ask agencies not to send applications and we don’t offer compensation for unsolicited CVs.