Senior Information Security Compliance Officer
Senior Information Security Compliance Officer
Job Introduction
As a Senior Information Security Compliance Officer at Sodexo, you'll enjoy a varied role working across a range of information security projects, from gaining critical security accreditations to improving our risk profile and infosec compliance across the organisation. You'll work to secure a number of different information security certifications for the business, including supporting internal and external audits for these and guiding stakeholders on remediation and risk mitigation activities. Together with your knowledgeable, supportive colleagues, you'll be able to make a real difference to Sodexo's information security maturity.
Key Responsibilities
- Build an annual consolidated Information Security Compliance Programme that provides the business, IT of visibility of internal and external Audit & Assurance activity to allow appropriate demand & resource planning.
- Deliver effective Security Compliance reporting to inform Risk & Issue reporting to the CISO, IT & Business Senior Leadership.
- Ensure Audit & Assurance actions are managed, tracked, and reported through to mitigation.
- Ensure the ISMS is managed and maintained in alignment with the Statement of Applicability and ISO27001/2 framework.
- Build and maintain a CE+ compliance framework that provides prioritised and targeted assurance activities.
- Support CE+ compliance efforts in performing and/or coordinating.
- Manage and maintain questionnaires within the Third Party Risk Management platform used by internal and external stakeholders, enhancing the product and supporting processes where applicable.
- Support the delivery of PCI DSS compliance programme to provide direction and assurance of operational controls and meet Sodexo’s compliance requirements.
The Ideal Candidate
- 6+ years of experience in Information Security and related fields.
- Expert knowledge and practical experience of ISO27001 certification requirements and ISMS documentation.
- Expert knowledge and practical experience of Cyber Essentials + certification requirements.
- Experience of leading and performing internal or external IT audits.
- Experience of comprehensive IT internal audit program design and development.
- General knowledge of IT environments and technologies.
- General Knowledge of Security Architecture or Enterprise Architecture.
- Desirable Certifications: CISM, CISA, CRISC, QSA, ISO27001 LI, ISO27001 LA.
- Analytical and problem-solving capabilities.
- Ability to gain Government Security Clearance.
Package Description
Working with Sodexo is more than a job; it’s a chance to be part of something greater.
In addition, we offer 20+ Sodexo benefits such as Sodexo retirement plan, discounts to over 1,900 brands to shop online, Gym discount to maintain a healthy lifestyle, a confidential 24/7 employee assistance programme providing independent support to overcome whenever life has its obstacles including emotional support, legal and financial advice.
About The Company
At Sodexo, our purpose is to create a better everyday for everyone to build a better life for all. As the global leader in services that improve the Quality of Life, we operate in 55 countries, serving over 100 million consumers each day through our unique combination of On-Site Food and FM Services, Benefits & Rewards Services and Personal & Home Services.
We're all about building a workplace for the future, we believe in equal opportunities, and we celebrate diversity. We’re an inclusive workplace, where everyone is welcome, everyone can be natural, and be the best versions of themselves. We recognise that we’re on a journey with regards to diversity and inclusion and would therefore welcome applications for candidates from underrepresented backgrounds.
We’re a Disability Confident Leader employer. We’re committed to changing attitudes towards disability, and making sure disabled people have the chance to fulfil their aspirations. We run a Disability Confident interview scheme for candidates with disabilities who meet the minimum selection criteria for the job.
Salary £56,000 per annum + car allowance + bonus
Frequency Annual
Job Reference SDX/TP/236614/TS
Contract Type Permanent – Full Time
Closing Date 05 March, 2025
Job Category Security
Business Unit UK Tech and Services
Location Remote / Some travel to Salford Sodexo office, United Kingdom
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
