Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Ensure security compliance is practical and effective across the organisation.
- Company: Dynamic tech firm focused on real-world security solutions.
- Benefits: Hybrid work model, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact by bridging security, IT, and business teams.
- Qualifications: Experience in security compliance and strong understanding of regulatory frameworks.
- Other info: Join a team that values genuine security practices and collaboration.
The predicted salary is between 36000 - 60000 £ per year.
York | Hybrid (2 days a week in the office)
Let’s get something out of the way. This isn’t a role about writing policies that nobody reads, or running audits for the sake of ticking boxes. We’re looking for a Security Compliance Officer for one of our clients who understands that good compliance is really about good security - and that the best controls are the ones people actually follow. You’ll be part of the Cyber Security Operations team, working closely with IT and the wider business to turn frameworks, regulations and policies into practical, everyday ways of working.
The Role (What This Job Is Really About)
Your job is to make sure their security obligations don’t live in spreadsheets and PDFs - they live in how they actually operate. You’ll design and maintain security compliance processes, support risk management and audits, and act as the bridge between security, IT and business teams. You’ll help people understand what’s required, why it matters, and how to do it properly.
What You’ll Be Doing:
- Security governance & compliance
- Designing and maintaining security compliance processes across IT and the wider business.
- Aligning controls with recognised standards and frameworks (ISO 27001/27002, NIST, CIS, Cyber Essentials, GDPR, and others).
- Owning and maintaining security policies, standards, procedures and guidance.
- Monitoring compliance with internal policies and external regulatory requirements.
- Supporting information security risk assessments and risk treatment plans.
- Maintaining risk registers and tracking remediation activities.
- Helping define risk acceptance criteria and escalation paths.
Audit & assurance
- Planning and coordinating internal security audits and control reviews.
- Supporting external audits, certifications and customer assurance requests.
- Tracking audit findings and making sure they’re fixed - not forgotten.
- Producing evidence packs and clear compliance reporting for stakeholders.
What We’re Looking For:
You’ll need:
- Experience in a security compliance, GRC or information security governance role.
- A strong understanding of security standards and regulatory frameworks.
- Experience designing and implementing security policies and compliance processes.
- Familiarity with audits, evidence collection and assurance activities.
- The ability to translate regulations into controls that actually work.
- Strong documentation skills and the confidence to engage stakeholders.
- A high level of attention to detail and organisation.
Nice to have (but not essential):
- Experience working alongside Security Operations or IT Operations teams.
- Knowledge of cloud security compliance (Azure or similar platforms).
- Experience with third-party risk management.
- Familiarity with UK GDPR and data protection.
- Experience using GRC tools.
If you care about doing compliance properly, want to make security easier for people to get right, and like working at the intersection of security, IT and the business - this is a role where you’ll genuinely make a difference.
Cyber Security Compliance Officer employer: Investigo
Contact Detail:
Investigo Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Compliance Officer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by practising common questions and scenarios related to security compliance. We recommend role-playing with a friend to get comfortable explaining how you’d tackle real-world challenges.
✨Tip Number 3
Showcase your passion for security compliance! During interviews, share examples of how you've made compliance processes more effective in previous roles. This will demonstrate that you’re not just ticking boxes but genuinely care about security.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Cyber Security Compliance Officer
Some tips for your application 🫡
Show Your Passion for Security: When you’re writing your application, let your enthusiasm for cyber security shine through. We want to see that you genuinely care about compliance and security, not just ticking boxes. Share any relevant experiences that highlight your commitment to making security accessible and effective.
Tailor Your Application: Make sure to customise your CV and cover letter to reflect the specific requirements of the Cyber Security Compliance Officer role. Use keywords from the job description, like 'security governance' and 'risk management', to show that you understand what we’re looking for and how you fit into the picture.
Be Clear and Concise: We appreciate straightforward communication, so keep your application clear and to the point. Highlight your key achievements and skills without unnecessary fluff. This will help us quickly see how you can contribute to our team and the wider business.
Apply Through Our Website: Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it shows you’re serious about joining our team at StudySmarter.
How to prepare for a job interview at Investigo
✨Know Your Standards
Familiarise yourself with key security standards and frameworks like ISO 27001, NIST, and GDPR. Be ready to discuss how you've applied these in past roles, as this shows you understand the practical implications of compliance.
✨Showcase Your Communication Skills
Since this role involves bridging gaps between security, IT, and business teams, practice explaining complex security concepts in simple terms. Use examples from your experience where you successfully communicated compliance requirements to non-technical stakeholders.
✨Prepare for Scenario Questions
Expect questions that ask how you would handle specific compliance challenges or audits. Think through real-life scenarios where you’ve had to design processes or manage risk, and be ready to share your thought process and outcomes.
✨Demonstrate Attention to Detail
This role requires a high level of organisation and detail orientation. Bring examples of documentation you've created or maintained, and be prepared to discuss how you ensure accuracy and thoroughness in compliance reporting and audits.
