Skip to content
Working at Sodexo - engineer fixing large machinery

Our vacancies

Search Jobs  

IT Compliance & Control Officer

Please Note: The application deadline for this job has now passed.

Job Introduction

We have a new and exciting opportunity to join our ever-growing IT department, as an IT Auditor on a 24 month fixed term basis.

We are looking to bring someone in-house to support compliance initiatives such as GDPR and audits. The role holder will perform various types of audits with multiple stakeholders across the organisation, including subsidiaries, with a wide range of systems in order to measure the IT risk level of the organisation. You will be responsible for ensuring controls are in place by supporting the development of relevant action plans to mitigate or reduce risks.

This is a varied role which offers exposure to the wide range of systems used across our business, and also the chance to work with a diverse range of stakeholders. Every day will be a school day as there is so much learn and scope to build and develop your knowledge in this area.

The ideal candidate would have strong technical knowledge and a background in IT auditing.

You’ll be based in our Salford Data Centre although some flexible / home working can be accommodated.

Check out this video all about life at Sodexo:

Role Responsibility

  • Develop and maintain an IT internal audit program delivered to IT functions and the business as required to ensure timely and semi-automated collection of evidences as per the Sodexo IT internal control framework
  • Conduct internal audits of IT general controls (access rights, change management, etc.) and IT security controls (network access, vulnerability management, etc.) against various systems within Sodexo UK & Ireland or its subsidiaries to assess the efficiency and effectiveness of controls
  • Perform third-party IT (security) audits, whether on-premise or remotely, as required
  • Run ISO27001 internal audits against the various Sodexo scopes in line with the standard expectations
  • Support GDPR and PCI DSS compliance efforts in performing and/or coordinating audits of the security measures in place for systems in-use, and contribute to the various steering committees
  • Contribute to the update of the systems and data inventory, and related security measures in accordance with GDPR requirements
  • Monitor action plans completion and support action plans definition with IT functions, the business, suppliers and any relevant stakeholder to remediate or mitigate risks identified
  • Define, monitor and report KPIs around audit results in line with Security and Compliance team objectives
  • Contribute to the continuous improvement process

The Ideal Candidate

What is essential:

  • Graduate in Information Security
  • Proficiency in core information security principles (access control, network security, vulnerability management, etc.)
  • General knowledge of IT environments and technologies, data privacy
  • Experience of leading and performing internal or external IT audits
  • Experience of negotiating with stakeholders in designing relevant action plans
  • Experience of GDPR
  • Knowledge of security standards for suppliers (ISAE 3402, PCI DSS, etc.)
  • Analytical and problem-solving capabilities

Where we can be flexible:

  • Experience of penetration testing
  • Experience of PCI DSS, former QSA
  • Experience of dealing with supplier audits
  • Knowledge in security architecture or enterprise architecture
  • Experience of comprehensive IT internal audit program design and development
  • Knowledge of ISO27001

Package Description

Up to £48,000 + benefits

We also offer Sodexo Discounts site promoting discounted mobile phone tariffs, savings across restaurant chains and days out, where you and your family can save money on everything from your weekly food shop to the latest cinema blockbuster and much more!

About the Company

In the UK and Ireland, Sodexo employs some 36,000 employees to deliver integrated facilities management services to clients at over 2,000 locations in the energy, corporate, healthcare, education, leisure, defence and justice sectors. With an annual turnover of over £1bn, we provide everything from catering, cleaning and reception to security, laboratory and grounds maintenance services, enabling our clients to focus on their core business.

At Sodexo we are committed to a leading role in promoting equality opportunities and valuing diversity and inclusion. We seek to create a work environment based on mutual respect for all individuals, building a culture that appreciates and values the experiences and skills brought by each person to benefit our organisation and work hard to ensure that all people, whatever their race, colour, sex, gender identity  disability, nationality, national or ethnic origin, religion or belief, marital/partnership or family status, sexual orientation, age, social class, educational background, employment status, working pattern, are welcome to and included within our organisation.

We’re a Disability Confident Leader employer. We’re committed to changing attitudes towards disability, and making sure disabled people have the chance to fulfil their aspirations.

We are building on our support to the Armed Forces community through the development of specific pathways within our recruitment process to  support ex-forces personnel and reservists, those applying for jobs with us who meet the ideal candidate criteria for the role advertised are guaranteed to progress to the selection process.

This website is using cookies to improve your browsing experience. If you navigate to another page without changing the settings bellow you consent to this. Read more about cookies.