Information Security Compliance Specialist

About Netcraft

Netcraft is the global leader in cybercrime detection and disruption. We’re a trusted partner for three of the four largest companies in the world, twelve of the fifty largest banks, and five country governments. We've blocked almost 200 million cyber-attacks to date, and we take down around 33% of the world's phishing attacks.

Our purpose and passion are focused on just one thing: protecting the world from cybercrime.

We carry that passion through into our workplace too. Our people are highly talented, and everyone is valued for their individual contribution, so we make sure Netcraft is a great place to work. From great benefits to health and wellness and social events, we’ve got you covered.

Netcraft is looking for an Information Security Compliance Specialist to help demonstrate, maintain, and continuously improve our security and compliance programmes. The role works closely with teams across the business, particularly Commercial, Legal, and Engineering, to support customer assurance activities and ensure our compliance materials remain accurate, consistent, and audit‑ready.

• Support customer and prospect security reviews, including questionnaires, due diligence requests, and assurance documentation
• Assist with RFP and tender responses, with a focus on information security, privacy, and risk
• Support the maintenance of Netcraft’s library of standard responses and supporting evidence (e.g., mapped answers for customer security responses where applicable), ensuring they are reviewed, versioned, and easy to reuse.

• Help maintain and improve the Netcraft Compliance Hub and Trust Centre, ensuring content is current and consistent
• Assist the Compliance Manager maintain security policies, processes, and customer facing security documentation, coordinating reviews with relevant teams to keep all published content aligned.
• Track key compliance actions, deadlines, and metrics, to help improve processes and tooling to reduce manual effort and improve visibility.

• Support vendor onboarding and third-party security reviews, including tracking risks and follow-ups.
• Support audit readiness and certifications such as SOC 2 Type II and Cyber Essentials (e.g., evidence collection, documentation upkeep, and tracking actions through to completion).

• Experience or strong working knowledge in information security, compliance, assurance, or risk, ideally including handling customer security reviews or internal evidence and documentation.
• Familiarity with security frameworks such as SOC 2 and Cyber Essentials, and an understanding of how framework controls map to evidence and documentation.
• Strong written communication skills, with the ability to explain security concepts clearly and accurately.
• Strong organisational skills and attention to detail, comfortable managing multiple deadlines.
• Technical curiosity and a willingness to learn and develop.

• Experience supporting compliance and assurance activities in a technology, SaaS, or regulated environment.
• Exposure to customer, partner, or internal assurance processes (e.g., procurement reviews, questionnaires, RFPs, tenders, audits, or risk assessments).
• Knowledge of third-party, risk management, or vendor onboarding controls (including tracking actions and follow-ups).
• Awareness of privacy and data protection concepts, such as GDPR.

Compliance is a critical foundation of what we do as a business. It helps us build customer trust, meet evolving security expectations, and enable teams across Netcraft to move quickly and confidently. By joining the Netcraft’s compliance team, you’ll be part of a core function that directly supports Netcraft’s future success, helping us grow and scale while maintaining our high standards that our customers have come to expect.

We are interested in what you can bring to the team, what you are excited to learn, and how you would like to grow in a compliance-focused role at Netcraft.

• Hybrid and flexible working options
• 33 days holiday per annum…