Job Details

Governance, Risk & Compliance Specialist

London, Milton Keynes, United Kingdom, Permanent

Posted: 20days ago


About us

Our story began in the 1940's when the Smith Family started their box making business in East London. Since then, our reputation has grown for quality engineering and dedication to our customers.

As a leading supplier of corrugated packaging and a FTSE 100 business, we operate across 37 countries and employ around 32,000 people. We believe in empowering our people; driving a culture of engagement and continuous improvement to deliver results. So, when you join us, you'll not be surprised to be given the opportunity to create, learn and innovate.

Our vision is very clear - to become the leading supplier of sustainable packaging solutions.

About the role

Joining the expanding IT Security function, your job as a Governance, Risk & Compliance Specialist will be to manage and expand risk management and compliance projects, establishing required processes needed in order for the team to perform optimally. It is crucial that you can work closely with the Security team as well as other functions, such as the Governance team, so that a unified approach to risk and compliance can be adopted in the business.

In this role you will develop, implement and expand the risk management function to ensure IT security risks are identified, recorded and tracked. This will tie in with the internal assessment and further improvement of our IT security controls so that we can properly manage risks.

You will be supporting internal and external audit processes, risk reviews and compliance checks, providing guidance on audit responses and remediation tracking of findings. You'll also assist in the maintenance of compliance with IT security related regulations, such as PCI DSS, GDPR, etc.

About you

  • Significant experience working in IT Security, with knowledge of IT security risk management frameworks and compliance practices
  • A background in Audit/Risk
  • Experience in large, multi-national, cross-functional teams
  • Ability to develop security standards and guidelines based on best practices and industry standards
  • Ideally CISA qualified - an additional IT Security certification would be beneficial (CISSP, CRMA, etc)
  • Strong interpersonal and influencing skills - able to build relationships with teams and stakeholders inside and outside of Group IT
  • Excellent presentation and written communication skills
  • Ability to analyse complex situations, especially in high pressure and dynamic environments


  • Competitive salary
  • Discretionary Bonus
  • Pension scheme
  • Life assurance
  • Income protection
  • 25 days' holiday plus bank holidays

Location: Milton Keynes

Job Details

London, Milton Keynes, United Kingdom