Information Security Compliance Officer
Please Note: The application deadline for this job has now passed.
Job Introduction
Information Security Compliance Officer
As an Information Security Compliance Officer at Sodexo, you'll be a driving force for a range of information security projects, from gaining critical security accreditations to improving our risk profile and information security compliance across the organisation. You'll also take on a wide variety of day-to-day responsibilities, including delivering technical security audits across the large, complex technology landscape of Sodexo UK&I, maintaining the ISMS and its ISO27001 certification, and helping business stakeholders to take appropriate decisions through your risk assessments.
As an Information Security Compliance Officer at Sodexo, you'll be a driving force for a range of information security projects, from gaining critical security accreditations to improving our risk profile and information security compliance across the organisation. You'll also take on a wide variety of day-to-day responsibilities, including delivering technical security audits across the large, complex technology landscape of Sodexo UK&I, maintaining the ISMS and its ISO27001 certification, and helping business stakeholders to take appropriate decisions through your risk assessments.
What you’ll do:
- Manage Sodexo’s Information Security Management System (ISMS) and other information security compliance activities to maintain various certifications, including ISO27001, Cyber Essentials + and PCI DSS
- Conduct Information Security Third Party Assurance on Sodexo suppliers to mitigate Risk throughout the lifecycle of supplier relationships
- Support the wider Sodexo business with appropriate action plans and risk assessments for new contracts and other activities
- Improve Sodexo UK&I's information security practices by engaging with Sodexo Global colleagues, leveraging knowledge and technology from the wider business to improve regional practices
What you bring:
- Experience creating ISMS documentation to gain ISO27001 certification
- Practical experience of Cyber Essentials +, PCI DSS and UK government accreditations
- Prior work performing internal or external IT and security audits, as well as dealing with third party supplier audits
- Ideally experience working with information security tools and platforms such as OneTrust or Security Scorecard
- The ability to achieve UK SC security clearance is a requirement of this role
What we offer:
Competitive Salary + Bonus + Excellent benefits package
Working with Sodexo is more than a job; it’s a chance to be part of something greater. You’ll belong in a company and team that values you for you; you’ll act with purpose and have an impact through your everyday actions; and you’ll be able to thrive in your own way. In addition, we offer:
- Flexible and dynamic work environment
- Competitive compensation
- Access to ongoing training and development programs
- Countless opportunities to grow within the company
