Compliance and Security Governance Analyst

Nexfibre is a next generation fibre broadband company, formed in December 2022 as a joint venture between InfraVia Capital Partners, Liberty Global and Telefónica. We are on a mission to deliver high-speed broadband to up to 7 million homes across the UK over the next 4 years. We are backed by a £4.5 billion investment by our investors and banks. Working closely with our commercial partner Virgin Media O2, we will create the only national scale fibre to the home network to compete with BT Openreach. We are supporting the Government's ambition to tackle digital exclusion, deliver nationwide ultrafast broadband rollout by 2030 and level up disconnected communities by investing in the areas we're building in and acting as a net-contributor. Nexfibre is a small, growing and dynamic organization. We look to attract high performing, energetic and entrepreneurial team members with a growth mindset.

JOB PURPOSE

The Compliance and Security Governance Analyst will support the delivery, coordination, and tracking of security governance, compliance, policy implementation and training activities across Nexfibre, including tracking obligations relating to the Telecommunications (Security) Act and relevant regulatory requirements. This role is primarily operational and administrative in nature, helping maintain governance processes, evidence tracking, reporting cadence and awareness activities.

RESPONSIBILITIES

• Maintain and update compliance trackers, action logs, risk registers and evidence repositories.
• Support monitoring of obligations related to the Telecommunications (Security) Act and associated security frameworks.
• Assist in preparing governance updates, dashboards, metrics, and reporting packs for internal stakeholders.
• Coordinate collection of evidence for audits, assurance reviews and regulatory requests, including s135 requests from Ofcom.
• Ensure all supporting compliance documentation such as the Information Security Compliance Toolkit including Asset Register, Business Impact Assessment, Risk Treatment Plan are kept up to date.
• Assist in the rollout and maintenance of security policies, standards, procedures and guidance documents.
• Track policy compliance, review cycles and feedback collection and assist with training materials and internal guidance.

KEY ACCOUNTABILITIES

• Assist Security Leads in managing and obtaining information to ensure risk and governance processes are up to date and managed as required.
• Support Security Leads by maintaining and updating records.

KNOWLEDGE & EXPERIENCE

• Strong organizational and administrative skills.
• Interest in cybersecurity, governance, risk and compliance.
• Working knowledge of the Telecoms Security Act.
• Exposure to compliance frameworks such as ISO 27001, NIST, Cyber Essentials.
• Experience of analyzing, reporting and presenting data in multiple ways.
• Experience supporting governance, audit or compliance activities.
• Experience coordinating training and awareness initiatives.
• Understanding of risk management, IT and networking principles.
• Ideally educated to degree level and holding a professional Information Security qualification such as CISSP or CISM.

BENEFITS

• Competitive salary and bonus scheme
• 25 days' annual leave, plus the usual 8 UK Bank Holidays
• Bupa private healthcare coverage
• Access to wellbeing and mental health benefits such as the WeCare app, critical illness cover, dental & optical insurance
• Pension contribution matched up to 10%
• Access to our car benefit scheme via Tusker and our Cycle to Work scheme
• Virgin Media / O2 discounts and offers

LOCATION

We are based in Paddington. The position is full time, hybrid with a minimum 3 days based in the office. Nexfibre is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for our people. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.