Job Title: Senior Security Risk and Compliance Analyst (6 Month Fixed Term Contract)
Location: Peterborough (Hybrid)
Are you an experienced Security Risk and Compliance Analyst with a strong grounding in supplier assurance, privacy and risk management? Do you enjoy working at pace, supporting global teams to strengthen security controls and ensure compliance with recognised frameworks and legislation?
ABF’s Business Technology Services (BTS) Cyber Security function is looking for a Senior Security Risk and Compliance Analyst to join the Governance, Risk and Compliance (GRC) team on a 6-month fixed-term contract. In this role, you’ll play a key part in supporting supplier management, compliance assurance and risk activities, helping the team manage workload during a period of increased demand while maintaining strong security and privacy standards across the business.
What you'll be doing:
- Supporting the day-to-day operation of the GRC function, including running daily GRC triage meetings and managing requests via Assyst, the GRC mailbox and planner
- Coordinating and contributing to compliance and assurance activities aligned to NIST, ISO27001 and ISO27701 frameworks
- Maintaining and updating risk registers, supporting both strategic and operational risk management activities
- Actively tracking, following up and supporting the closure of identified risks and agreed mitigation actions
- Conducting routine security and compliance assurance checks, collating evidence and supporting audit activities
- Supporting supplier risk management activities, including onboarding checks, contract reviews and ongoing supplier assurance
- Assisting with privacy-related activities, including Data Protection Impact Assessments (DPIAs) and awareness of global data protection requirements
- Working closely with internal stakeholders across BTS, procurement and legal teams to ensure consistent, timely and accurate risk and compliance reporting
What you'll bring:
- Demonstrable experience in security risk management, compliance assurance and supplier management within a global IT or technology environment
- Strong working knowledge of industry-recognised frameworks such as NIST Cybersecurity Framework, ISO27001 and ISO27701
- Experience supporting legislative and regulatory compliance, including UK GDPR and the Data Protection Act 2018, with awareness of wider global data protection laws
- Proven ability to gather, analyse and present assurance evidence clearly for both technical and non-technical stakeholders
- Excellent stakeholder management skills, with the confidence to work collaboratively across multiple teams and priorities
- Strong organisational skills with the ability to manage competing demands in a fast-paced, service-led environment
- Clear written and verbal communication skills, with high attention to detail
- A proactive, pragmatic and customer-focused approach, with a strong sense of ownership and accountability
Location
Hybrid, a mix of office and homeworking. This role will be based at our Peterborough offices on the Lynchwood Business Park. The office has recently been renovated and along with a modern work environment has great public transport links, free onsite parking, free drink facilities, free lunch option each day and a great team culture.