×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Senior Specialist, Information Security, Risk and Compliance

Job in London, Greater London, W1B, England, UK
Listing for: tendersglobal
Contract position
Listed on 2026-02-17
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Job Description & How to Apply Below

JOB DESCRIPTION

Save the Children International has an exciting opportunity for a Senior Specialist, Information Security Risk and Complianceto join our global team.

Team and Job Purpose

The Cybersecurity and Information Assurance team is responsible for safeguarding the confidentiality, integrity, availability of all SCI’s information assets (data and systems). The team is responsible for identifying, assessing and managing cybersecurity and information risk and investigating and managing cybersecurity incidents and data breaches.

Role purpose

The Senior Specialist, Information Security Risk and Compliance Officer will play a key role in ensuring SCI addresses information and cybersecurity risks in a timely and effective manner. Reporting to the Director of Information Security and Data Protection, the role will work closely with colleagues in the cybersecurity operations and information assurance teams as well as teams across IT and the wider organisation to support risk and compliance activities.

The role will be responsible for keeping the IT Risk Register up to date and coordinating risk mitigation actions across the organisation. The role is also responsible for the coordination of all information security compliance activities including Cyber Essentials, ISO
27000 and NIST CSF.

Job Title: Senior Specialist, Information Security Risk and Compliance

Reports To: Head of Information Assurance and Data Protection Officer

Work Pattern: Hybrid/Remote with flexible working options available

Contract Length: Permanent

Grade:P4

Location: Any approved Save the Children International office location. For a full list of locations that Save the Children International can hire in, please visit: SCI Careers

Time Zone(that the role holder mustbe available to work in):Any

Right to Work: The successful candidate must possess the unrestricted right to work in their current or preferred location for the duration of employment

Language Requirements:English

International Travel Requirements: up to 5-10%

Principal Accountabilities

  • Support the Director of Information Security with the effective and timely management of all information security risk and compliance activities
  • Maintain the IT Risk Register, ensuring that newly identified risks are recorded and assigned to the appropriate risk register
  • Schedule and administer risk register review meetings; track open risks and liaise with risk owners to ensure they are addresses
  • Coordinate with the IT/TD Project Management Office (PMO) to ensure new projects and initiatives follow prescribed governance processes
  • Conduct information security risk assessments and reviews in association with the Cybersecurity Operations Manager and Information Security Architect and communicate risk assessment outcomes to technical and non-technical stakeholders across SCI
  • Coordinate all information security compliance activities including internal audits, Cyber Essentials, ISO
    27000 and NIST CSF
  • Work closely with colleagues in the Global IT Operations team to facilitate the annual Global IT Controls Assessment of all Country and Regional Offices
  • Coordinate responses to all internal and external audit and assurance activities
  • Support and contribute to the development of information security risk and compliance policies, procedures and standards
  • Identify opportunities to continually improve SCI’s information security risk and compliance capabilities

Experience and Skills

Essential

  • Demonstrable experience working in an information security function or related GRC role.
  • Strong knowledge of information security / cybersecurity management principles.
  • Working knowledge of at least one globally recognized information security framework such as ISO
    27000, NIST CSF or Cyber Essentials.
  • Experience of conducting information security risk assessments or reviews.
  • Demonstrable experience of advising stakeholders in relation to risk remediation.
  • Good knowledge of commonly applied technical and organizational information security controls
  • Ability to work with a range of business stakeholders to understand and articulate their activities in line with defined standards.
  • Good verbal and written communication skills.
  • Self-motivated, with a…
    • Position Requirements
    10+ Years work experience
    Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search