IT Compliance and Audit Manager

IT Compliance and Audit Manager – Hinckley

The IT Compliance and Audit Manager is responsible for overseeing the entire Information Security Management Systems (ISMS) implementation within Galliford Try in accordance with ISO 27001 standards.

• Oversee the development, implementation, and maintenance of the organisation's ISMS in accordance with ISO 27001 standards.
• Complete the quarterly audits and prepare information for Top Level Management Review to ensure the ISMS maintains suitability, adequacy and effectiveness.
• Conduct regular risk assessments to identify potential security threats and vulnerabilities and develop mitigation strategies.
• Create and update information security policies, procedures, and guidelines to ensure compliance with ISO 27001 requirements.
• Plan and conduct internal audits to assess the effectiveness of the ISMS and identify areas for improvement, OFIs and NCs (Opportunity for Improvement and Non-Compliance).
• Prepare detailed audit reports, summarising findings, recommendations, and corrective actions.
• Monitor and ensure ongoing compliance with ISO 27001 standards and other relevant regulations and requirements.
• Develop and deliver information security training and awareness programs for employees at all levels of the organisation.
• Collaborate with internal and external stakeholders, including senior management, IT teams, and external auditors, to ensure alignment and support for information security initiatives.
• Take part in incident response activities, including investigation, documentation, and reporting of security incidents.

• ISO 27001 Lead Auditor or Lead Implementer certification.
• Minimum 3 years’ experience in information security management, with a strong focus on ISO 27001.
• In‑depth knowledge of information security principles, risk management and compliance.
• Strong written and verbal communication skills, with the ability to engage non‑technical stakeholders.
• Ability to take ownership, lead activities and manage multiple priorities.

• Generous holiday entitlement, increasing with years of service, plus the opportunity to purchase further holidays.
• A wide range of corporate discounts.
• Cycle to Work schemes.
• Comprehensive pension plan.
• Competitive family leave policy.
• Regular Save as You Earn share purchase scheme.
• Private medical scheme options are available for all salaried employees, and an employee assistance programme providing free 24/7 support to those who need it.
• Paid yearly membership to one recognised professional association relevant to your role.

Galliford Try welcomes applications from candidates who would like to work full‑time, reduced hours or flexibly; this will be discussed in more detail as part of the recruitment process.

As a Disability Confident employer, we offer an interview to any candidate with a long‑term health condition or disability who meets the essential criteria for the advertised position. Please contact the Resourcing Partner if you believe this applies to you. We will also discuss any adjustments required for your interview.

Skyemarie Bree – sk