×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Senior Business Information Security Specialist

Job in Greater London, London, Greater London, W1B, England, UK
Listing for: Just Eat Takeaway.com
Full Time position
Listed on 2026-06-11
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 GBP Yearly GBP 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Location: Greater London

About this role

The Info Sec team at JET is scaling its security partnership and vendor assurance capability across a complex, cloud-native environment spanning multiple markets. As Security Business Partner, you will own the day-to-day delivery of vendor security reviews and shift-left security practices within engineering and product teams. You will work closely with the Security Business Partner function to embed security thinking early and give JET confidence in its third‑party supply chain.

Based in the UK, this is a hands‑on, high‑impact individual role.

These are some of the key components to the position:
  • Execute vendor security assessments by collecting, analysing, and documenting supplier control evidence, audit reports, and risk findings against defined frameworks including ISO 27001 and NIST CSF.
  • Identify and document third‑party security risks, recommending proportionate risk treatment options aligned to JET's risk appetite.
  • Support threat modelling, secure design reviews, risk remediation recommendations and early‑stage risk assessments alongside engineering teams as part of the secure development lifecycle.
  • Translate security findings into clear, business‑aligned risk language for product and stakeholders, reducing reliance on technical jargon.
  • Maintain accurate risk registers, vendor assessment records, and reporting inputs that feed into executive‑level risk dashboards.
  • Build working relationships with business and technology teams across multiple markets, acting as a visible and trusted point of contact for security guidance.
What will you bring to the team?
  • Demonstrated ability to execute security risk assessments and vendor reviews end‑to‑end, including evidence collection, gap analysis, and documented findings.
  • Working knowledge of security frameworks such as NIST CSF, ISO 27001, or CIS Controls applied in a product or engineering context.
  • Ability to communicate security risk clearly to both technical and non‑technical audiences, without defaulting to jargon or compliance‑speak.
  • Familiarity with GRC concepts including risk management, controls design, and third‑party assurance, gained through hands‑on practice rather than solely policy work.
  • Comfort working across multiple teams and geographies in a fast‑moving environment, managing competing priorities without losing accuracy or rigour.
  • Relevant certifications (such as CISA, CRISC, or equivalent) are a plus, but not a barrier to applying if you can demonstrate the capability.
#J-18808-Ljbffr
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search