Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to protect information and ensure compliance in a dynamic environment.
- Company: MIB is dedicated to making roads safer and supporting victims of uninsured drivers.
- Benefits: Enjoy a competitive salary, hybrid working, generous holiday, and wellness support.
- Why this job: Make a real impact on road safety while developing your skills in information security.
- Qualifications: Experience in information security and risk management is essential.
- Other info: Inclusive workplace where diverse ideas and experiences are valued.
The predicted salary is between 40000 - 68000 £ per year.
About MIB
At MIB our people are passionate about making roads safer by getting uninsured and hit-and-run drivers off our roads. Working in partnership with the Police, Insurers and Government our collective aim is to make it a thing of the past but, until that’s accomplished, we’re here to compensate victims quickly, fairly and compassionately. Last year we helped more than 34,000 people struck by uninsured and hit-and-run drivers and paid over £400 million in compensation to support victims rebuild their lives. We’re looking for a professional and inspiring GRC Specialist to come and join our team.
About Our Role
As a member of the Information Security - Governance Risk and Compliance team (InfoSec GRC), you’ll maintain the confidentiality, availability and integrity of MIB’s information and information systems. This will primarily be achieved through identification and recommendation of risk mitigation treatment plans and as a subject matter specialist to support the needs of the organisation.
Key responsibilities
- Governance
- Support the GRC Manager with the development, alignment of an Information Security Strategy
- Development, review and alignment of Information Security Policy
- Create, deliver and maintain information security awareness programmes
- Ensure InfoSec policies, procedures and standards are accessible, communicated and understood by employees, contractors and vendors, delivering training when required.
- Attendance of relevant governance groups within MIB to ensure complete, transparent and effective risk management is delivered
- Producing management information (Dashboard) that clearly reflects MIB’s information security risk profile
- Establish and maintain a community of Information Security ‘Champions’ throughout the organisation
- Act as an Information Security subject matter specialist to the business
- Establish mechanisms, behaviours and culture to encourage the protection of MIB information and information systems
- Risk
- Management and maintenance of the ISS Risk Register, ensuring risks are actively identified and managed or exemptions are approved and recorded.
- Completion of InfoSec risk assessments and workshops.
- Ensuring that InfoSec risk governance and control frameworks are maintained and that risks/issues are reported and escalated appropriately.
- Review, challenge and track the implementation and effectiveness of controls and risk mitigation treatment plans as a result of a risk assessment
- Ensure appropriate management focus for any vulnerability that could damage the confidentiality, integrity or availability of MIB information or information systems.
- Track and record information security incidents and to ensure risk mitigation controls are appropriate and proportionate and that exposure is minimized.
- Support the Information Security Incident response process as required
- Facilitate a process of continuous improvement in the delivery of information security services to MIB
- Compliance
- To work with all teams to track requirements and compliance with relevant Legislation, Regulations, Standards and Frameworks as they pertain to Information Security
- Ensure compliance is maintained with our critical security compliance certification of ISO27001
- Measure the performance and compliance of key MIB controls which include (but are not limited to):
- MIB information security policies
- Delivery governance gateways
- Technical controls
- Develop, implement and maintain a rolling 12-month compliance schedule
Skills and Experience
- The jobholder must have a thorough understanding of the Information security threat landscape, significant risks, technical developments and strategies
- Extensive experience in the IT marketplace, as a security practitioner
- Experience and knowledge of leading information security risk assessments
- Proven experience in writing Information Security policies, procedures and standards
- Experience in maintaining all aspects of ISO27001/2 compliance
- Working knowledge of standard risk management/control frameworks such as ISF, NIST, ISO and ITIL.
- Demonstrable experience in creating a sustainable compliance capability
- Excellent written and oral communication skills
- Able to present risk in ‘non-technical’ business-friendly accessible language
- Ability to effectively prioritise and execute tasks in a high-pressure environment
One or more of the following qualifications are highly desirable:
- Certified Information Systems Security Professional (CISSP)
- Certified Information systems Auditor (CISA)
- Certified Risk and Information Systems Control (CRISC)
Salary £67,000 Fixed Term Contract for 6 months Grade 13 35 hours per week (Monday - Friday) IT kit supplied to you £320 (before tax) start up allowance Hybrid working (2 days in the office per week) from our newly refurbished Milton Keynes office, MK14
Other Benefits include:
- Contributory Group Stakeholder Personal pension scheme
- Life Assurance
- Employee Incentive Scheme
- 27 days holiday (plus public holidays)
- Holiday purchase scheme
- Sports and Social Club
- 24/7 Employee Assistance Programme
- Free access to online tools to support mental and physical health
- Enhanced maternity, paternity and adoption leave
- 1 volunteer day each year and charity matched funding scheme
We believe in a workplace where everyone can be themselves. Through our different ideas, personalities and experiences, we redefine what is possible every day. And regardless of your colour, age, race, gender, sexual orientation or anything else you consider yourself to be, there is a place for you at MIB. A place where you can bring your best self to work every day.
So, if you think big, love a challenge and want to make a difference to people’s lives, we want to hear from you.
Information Security GRC Specialist - 6 month FTC - Milton Keynes in Sutton employer: MIB
Contact Detail:
MIB Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security GRC Specialist - 6 month FTC - Milton Keynes in Sutton
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend events, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by researching MIB and understanding their mission. Tailor your answers to show how your skills align with their goals, especially around information security and risk management.
✨Tip Number 3
Practice makes perfect! Do mock interviews with friends or use online platforms to get comfortable with common questions. The more you practice, the more confident you'll feel when it’s time to shine.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you’re genuinely interested in being part of the MIB team.
We think you need these skills to ace Information Security GRC Specialist - 6 month FTC - Milton Keynes in Sutton
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter for the GRC Specialist role. Highlight your experience with information security policies and risk management, as these are key to what we’re looking for.
Showcase Your Skills: Don’t just list your qualifications; demonstrate how they relate to the job. If you’ve got experience with ISO27001 compliance or risk assessments, make it clear! We want to see how you can contribute to our mission.
Be Clear and Concise: When writing your application, keep it straightforward. Use simple language to explain complex ideas, especially when discussing risk management. We appreciate clarity and want to see your communication skills shine!
Apply Through Our Website: We encourage you to submit your application through our website. It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at MIB
✨Know Your Stuff
Make sure you brush up on the latest trends in information security and the specific risks that MIB faces. Familiarise yourself with ISO27001 compliance and be ready to discuss how your experience aligns with their needs.
✨Showcase Your Communication Skills
As an Information Security GRC Specialist, you'll need to explain complex concepts in simple terms. Prepare examples of how you've successfully communicated risk management strategies to non-technical stakeholders in the past.
✨Prepare for Scenario Questions
Expect questions that ask how you would handle specific risk scenarios or compliance challenges. Think through potential situations you might face at MIB and outline your approach to resolving them effectively.
✨Demonstrate Your Passion
MIB is all about making roads safer and helping victims. Share your motivation for wanting to work in this field and how your values align with their mission. A genuine passion can set you apart from other candidates.
