Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and evolve information security governance while promoting a culture of security awareness.
- Company: Join Oxfam GB, a global leader in humanitarian work.
- Benefits: Enjoy flexible working, generous pension, and extensive learning opportunities.
- Why this job: Make a real impact on data protection and compliance in a meaningful organisation.
- Qualifications: Experience in GRC or information security leadership with strong communication skills.
- Other info: Be part of a diverse team committed to equality and inclusion.
The predicted salary is between 36000 - 60000 £ per year.
Overview
Governance, Risk and Compliance (GRC) Lead, Information Security — Oxfam GB. Lead and evolve information security governance to meet internal, regulatory, and donor-driven obligations while promoting a culture of security awareness and accountability across teams and partners.
Role summary
This is a strategic leadership role responsible for protecting data, managing risk, and ensuring the organisation meets the highest standards of security and compliance. You will embed a culture of security across the global organisation to strengthen impact and resilience.
Responsibilities
- Lead and evolve the GRC functions for Information Security, ensuring alignment with internal, regulatory, and donor requirements.
- Act as a strategic influencer to embed security awareness, accountability, and resilience across all teams and partners.
- Manage cross-functional initiatives, governance, risk assessments, audits, and policy management, including stakeholder engagement.
- Oversee vendor risk and third-party assurance models; manage relationships with external partners and internal stakeholders.
- Provide leadership in information security governance, risk management, and compliance activities; support audit readiness and remediation efforts.
Qualifications
- Proven experience in a senior GRC or information security leadership role.
- Strong knowledge of compliance frameworks (PCI DSS, Cyber Essentials, CIS Controls, ISO27001).
- Excellent communication and negotiation skills, especially under pressure; ability to influence across functions and levels.
- Strong ethical compass and commitment to integrity in oversight roles.
- Able to work independently while fostering shared accountability and meeting tight deadlines in demanding environments.
- Demonstrable experience in audit, policy management, and stakeholder engagement.
- Understanding of vendor risk and third-party assurance models.
We offer
- Competitive salary and a range of benefits including flexible working options, generous pension scheme, annual leave, additional leave allowances, company sick pay, and life assurance.
- Learning and development opportunities including in-house courses, e-learning modules, on-the-job learning, coaching, and mentoring.
How to apply
As part of your online application, upload your up-to-date CV and a Cover Letter explaining your suitability against the essential criteria in the job profile.
About us and values
Oxfam is committed to safeguarding and promoting the welfare of children, young people, adults and beneficiaries. All offers are subject to references and screening checks. We encourage applicants from diverse backgrounds and are committed to equality, diversity, and inclusion.
#J-18808-Ljbffr
Governance Risk and Compliance Lead, Information Security employer: Oxfam
Contact Detail:
Oxfam Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Governance Risk and Compliance Lead, Information Security
✨Tip Number 1
Network like a pro! Reach out to people in the industry, attend events, and connect on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. Understand their values and how they align with your own. This will help you answer questions confidently and show that you're genuinely interested in the role.
✨Tip Number 3
Practice your pitch! Be ready to explain your experience and how it relates to the Governance, Risk, and Compliance field. Tailor your responses to highlight your leadership skills and knowledge of compliance frameworks.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Governance Risk and Compliance Lead, Information Security
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Governance, Risk and Compliance role. Highlight your relevant experience in information security and compliance frameworks like PCI DSS and ISO27001. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Be sure to address the essential criteria mentioned in the job profile and show us your passion for promoting a culture of security awareness.
Showcase Your Leadership Skills: Since this is a strategic leadership role, make sure to highlight your experience in leading GRC functions and managing cross-functional initiatives. We love seeing examples of how you've influenced teams and fostered accountability in previous roles.
Apply Through Our Website: Don't forget to apply through our website! It's the best way to ensure your application gets to us directly. Plus, it makes the whole process smoother for you and us. We can't wait to see your application!
How to prepare for a job interview at Oxfam
✨Know Your GRC Frameworks
Make sure you brush up on your knowledge of compliance frameworks like PCI DSS, Cyber Essentials, and ISO27001. Being able to discuss these frameworks confidently will show that you’re not just familiar with them but can also apply them strategically in the role.
✨Showcase Your Leadership Skills
Prepare examples of how you've led cross-functional initiatives or managed risk assessments in the past. Highlighting your experience in influencing teams and promoting a culture of security awareness will resonate well with the interviewers.
✨Engage with Stakeholders
Think about how you’ve successfully engaged with stakeholders in previous roles. Be ready to discuss specific instances where your communication and negotiation skills made a difference, especially under pressure. This will demonstrate your ability to manage relationships effectively.
✨Demonstrate Ethical Integrity
Oxfam values integrity highly, so be prepared to discuss your ethical compass and how it has guided your decisions in governance and compliance roles. Sharing real-life scenarios where you upheld these values will help you stand out as a candidate who aligns with their mission.