At a Glance
- Tasks: Support security governance and compliance activities while tracking obligations and maintaining documentation.
- Company: Join Nexfibre, a dynamic fibre broadband company on a mission to connect millions.
- Benefits: Enjoy competitive salary, 25 days leave, private healthcare, and pension contributions.
- Other info: Hybrid work model with a vibrant team culture and excellent growth opportunities.
- Why this job: Make a real impact in cybersecurity and governance while growing your career.
- Qualifications: Strong organisational skills and interest in cybersecurity; degree preferred.
The predicted salary is between 40000 - 50000 £ per year.
About Us
Nexfibre is a next‑generation fibre broadband company, formed in December 2022 as a joint venture between InfraVia Capital Partners, Liberty Global and Telefónica. We are on a mission to deliver high‑speed broadband to up to 7 million homes across the UK over the next 4 years. We are backed by a £4.5 billion investment by our investors and banks. Working closely with our commercial partner Virgin Media O2, we will create the only national scale fibre‑to‑the‑home network to compete with BT Openreach. We are supporting the Government’s ambition to tackle digital exclusion, deliver nationwide ultrafast broadband rollout by 2030 and level up disconnected communities by investing in the areas we’re building in and acting as a net‑contributor. Nexfibre is a small, growing and dynamic organisation. We look to attract high‑performing, energetic and entrepreneurial team members with a growth mindset.
Job Purpose
The Compliance and Security Governance Analyst will support the delivery, coordination and tracking of security governance, compliance, policy implementation and training activities across Nexfibre, including tracking obligations relating to the Telecommunications (Security) Act and relevant regulatory requirements. This role is primarily operational and administrative in nature, helping maintain governance processes, evidence tracking, reporting cadence and awareness activities.
Principle Responsibilities Of The Role
- Maintain and update compliance trackers, action logs, risk registers and evidence repositories.
- Support monitoring of obligations related to the Telecommunications (Security) Act and associated security frameworks.
- Assist in preparing governance updates, dashboards, metrics, and reporting packs for internal stakeholders.
- Coordinate collection of evidence for audits, assurance reviews and regulatory requests, including s135 requests from Ofcom.
- Ensure all supporting compliance documentation such as the Information Security Compliance Toolkit, including the Asset Register, Business Impact Assessment, Risk Treatment Plan, are kept up to date.
- Assist in the rollout and maintenance of security policies, standards, procedures and guidance documents.
- Track policy compliance, review cycles and feedback collection and assist with training materials and internal guidance.
Key Accountabilities
- Assist Security Leads in managing and obtaining information to ensure risk and governance processes are up to date and managed as required.
- Support Security Leads by maintaining and updating records.
Knowledge & Experience
- Strong organisational and administrative skills.
- Interest in cybersecurity, governance, risk and compliance.
- Working knowledge of the Telecoms Security Act.
- Exposure to compliance frameworks such as ISO 27001, NIST, Cyber Essentials.
- Experience of analysing, reporting and presenting data in multiple ways.
- Experience supporting governance, audit or compliance activities.
- Experience coordinating training and awareness initiatives.
- Understanding of risk management, IT and networking principles.
- Ideally educated to degree level and holding a professional Information Security qualification such as CISSP or CISM.
Benefits
- Competitive salary and bonus scheme
- 25 days’ annual leave, plus the usual 8 UK Bank Holidays
- Bupa private healthcare coverage
- Access to wellbeing and mental health benefits such as the WeCare app, critical illness cover, dental & optical insurance
- Pension contribution matched up to 10%
- Access to our car benefit scheme via Tusker and our Cycle to Work scheme
- Virgin Media / O2 discounts and offers
LOCATION
We are based in Paddington. The position is full time, hybrid with a minimum of 3 days based in the office. Nexfibre is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for our people. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.
Compliance and Security Governance Analyst employer: nexfibre
Nexfibre is an exceptional employer, offering a dynamic and inclusive work environment in the heart of Paddington. With a strong focus on employee growth and well-being, we provide competitive salaries, comprehensive healthcare benefits, and a commitment to diversity. Join us as we revolutionise broadband access across the UK, where your contributions will directly impact communities and help bridge the digital divide.
StudySmarter Expert Advice🤫
We think this is how you could land Compliance and Security Governance Analyst
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like nexfibre looking for candidates who are engaged and informed.
We think you need these skills to ace Compliance and Security Governance Analyst
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at nexfibre. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at nexfibre
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with nexfibre’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!
