×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Information Security Cybersecurity IT Consultant Data Security

Information Security Specialist

Job in Milton Keynes, Buckinghamshire, MK1, England, UK
Listing for: Motor Insurers' Bureau (MIB)
Contract position
Listed on 2026-02-24
Job specializations:
  • IT/Tech
    Information Security, Cybersecurity, IT Consultant, Data Security
Job Description & How to Apply Below

*** Information Security GRC Specialist - 6 month FTC
*** About MIB

At MIB our people are passionate about making roads safer by getting uninsured and hit-and-run drivers off our roads. Working in partnership with the Police, Insurers and Government our collective aim is to make it a thing of the past but, until that’s accomplished, we’re here to compensate victims quickly, fairly and compassionately.

Last year we helped more than 34,000 people struck by uninsured and hit-and-run drivers and paid over £400 million in compensation to support victims rebuild their lives.

We're looking for a professional and inspiring GRC Specialist to come and join our team.

About Our Role

As a member of the Information Security - Governance Risk and Compliance team (Info Sec GRC), you'll maintain the confidentiality, availability and integrity of MIB’s information and information systems. This will primarily be achieved through identification and recommendation of risk mitigation treatment plans and as a subject matter specialist to support the needs of the organisation.

Key responsibilitiesGovernance
  • Support the GRC Manager with the development, alignment of an Information Security Strategy
  • Development, review and alignment of Information Security Policy
  • Create, deliver and maintain information security awareness programmes
  • Ensure Info Sec policies, procedures and standards are accessible, communicated and understood by employees, contractors and vendors, delivering training when required.
  • Attendance of relevant governance groups within MIB to ensure complete, transparent and effective risk management is delivered
  • Producing management information (Dashboard) that clearly reflects MIB’s information security risk profile
  • Establish and maintain a community of Information Security ‘Champions’ throughout the organisation
  • Act as an Information Security subject matter specialist to the business
  • Establish mechanisms, behaviours and culture to encourage the protection of MIB information and information systems
Risk
  • Management and maintenance of the ISS Risk Register, ensuring risks are actively identified and managed or exemptions are approved and recorded.
  • Completion of Info Sec risk assessments and workshops.
  • Ensuring that Info Sec risk governance and control frameworks are maintained and that risks/issues are reported and escalated appropriately.
  • Review, challenge and track the implementation and effectiveness of controls and risk mitigation treatment plans as a result of a risk assessment
  • Ensure appropriate management focus for any vulnerability that could damage the confidentiality, integrity or availability of MIB information or information systems.
  • Track and record information security incidents and to ensure risk mitigation controls are appropriate and proportionate and that exposure is minimized.
  • Support the Information Security Incident response process as required
  • Facilitate a process of continuous improvement in the delivery of information security services to MIB
Compliance
  • To work with all teams to track requirements and compliance with relevant Legislation, Regulations, Standards and Frameworks as they pertain to Information Security
  • Ensure compliance is maintained with our critical security compliance certification of ISO
    27001

Measure the performance and compliance of key MIB controls which include (but are not limited to):

  • MIB information security policies
  • Delivery governance gateways
  • Technical controls
  • Develop, implement and maintain a rolling 12-month compliance schedule
Skills and Experience
  • The jobholder must have a thorough understanding of the Information security threat landscape, significant risks, technical developments and strategies
  • Extensive experience in the IT marketplace, as a security practitioner
  • Experience and knowledge of leading information security risk assessments
  • Proven experience in writing Information Security policies, procedures and standards
  • Experience in maintaining all aspects of ISO
    27001/2 compliance
  • Working knowledge of standard risk management/control frameworks such as ISF, NIST, ISO and ITIL.
  • Demonstrable experience in creating a sustainable compliance capability
  • Excellent written and oral communication…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search