Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security risk and compliance framework, ensuring alignment with business goals and regulations.
- Company: Join The AA, a leading motoring organisation evolving beyond roadside assistance.
- Benefits: Enjoy competitive salary, annual bonus, private medical insurance, and 25 days holiday.
- Why this job: Make a real impact in security while working in a dynamic, hybrid environment.
- Qualifications: Expertise in ISO27001, internal audit skills, and experience in regulated environments required.
- Other info: Diverse learning opportunities and a supportive culture await you at The AA.
The predicted salary is between 60000 - 75000 £ per year.
Location: London (hybrid working 3 office days per week)
Employment Type: Permanent, full time
Additional Benefits: Annual Bonus, Cash-Car Allowance & Private Medical Insurance
For over a century, we have been evolving and adapting. Today, as the nation's leading motoring organisation, we offer a wide range of products and services to millions of customers. From roadside assistance to home and motor insurance, and the latest driving technologies, we have it all. As we continue to expand, diversify, and modernise, joining us as a Security Risk & Compliance Manager means you'll play a crucial role in our success and be part of this exciting motoring journey.
This is the job
We're looking for a highly capable Security Risk & Compliance Manager to shape and operate our enterprise security risk and compliance framework. This is a key role within Group Security, partnering across technology, risk, compliance and leadership teams to ensure our security posture aligns with business priorities and regulatory expectations.
You'll take ownership of key security frameworks and certifications, drive audit readiness, and provide clear insight into risk and control effectiveness, enabling informed decision-making at a senior level.
This opportunity suits someone with strong internal audit capability, deep ISO27001 expertise, and the confidence to operate in a regulated environment without reliance on tooling.
What will I be doing?
- Lead the development and operation of the enterprise security risk and compliance framework aligned to business outcomes and risk appetite
- Own lifecycle management of key certifications (including ISO27001), ensuring audit readiness and successful external assurance outcomes
- Deliver robust security risk assessment, reporting and governance, including KRIs, dashboards and executive insight
- Drive control assurance and continuous improvement, ensuring gaps are identified, owned and remediated effectively
- Partner with cross-functional stakeholders to embed security requirements into technology, change and operational processes
- Act as a senior subject matter expert, influencing decisions and promoting a strong culture of security ownership
What do I need?
- Demonstrated expertise operating and auditing Information Security Management Systems (ISMS), ideally with ISO27001 certification or similar
- Strong internal audit capability, able to independently assess controls without reliance on automated tools
- Proven experience working within regulated environments, with knowledge of FCA and/or PRA expectations
- Ability to build effective relationships and influence senior stakeholders across technology, risk and business teams
- Strong understanding of risk management, control frameworks and assurance practices within complex organisations
- Professional certifications such as ISO27001 Lead Auditor/Implementer, CISSP, CISM, CRISC or equivalent are highly valued
We're always looking to recognise and reward our employees for the work they do. As a valued member of The AA team, you'll have access to a range of benefits including:
- 25 days annual leave plus bank holidays + holiday buying scheme
- Worksave pension scheme with up to 7% employer contribution
- Free AA breakdown membership from Day 1 plus 50% discount for family and friends
- Discounts on AA products including car and home insurance
- Employee discount scheme that gives you access to a car salary sacrifice scheme plus great discounts on healthcare, shopping, holidays and more
- Company funded life assurance
- Diverse learning and development opportunities to support you to progress in your career
- Dedicated Employee Assistance Programme and a 24/7 remote GP service for you and your family
We're an equal opportunities employer and welcome applications from everyone. The AA values diversity and the difference this brings to our culture and our customers. We actively seek people from diverse backgrounds to join us and become part of an inclusive company where you can be yourself, be empowered to be your best and feel like you truly belong.
Security Risk & Compliance Manager (London) - NonVolume employer: The Automobile Association
Contact Detail:
The Automobile Association Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Risk & Compliance Manager (London) - NonVolume
✨Tip Number 1
Network like a pro! Reach out to current employees at The AA on LinkedIn or through mutual connections. A friendly chat can give you insider info and might just get your foot in the door.
✨Tip Number 2
Prepare for the interview by knowing your stuff! Research The AA's recent projects and challenges in security risk and compliance. This shows you're genuinely interested and ready to contribute.
✨Tip Number 3
Practice your STAR technique for answering behavioural questions. Think of specific examples from your past that highlight your skills in risk management and compliance – this will make you stand out!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re serious about joining The AA team.
We think you need these skills to ace Security Risk & Compliance Manager (London) - NonVolume
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Risk & Compliance Manager role. Highlight your experience with ISO27001 and internal audits, as these are key for us. Use specific examples that showcase your skills in risk management and compliance.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Explain why you're passionate about security and compliance, and how your background aligns with our needs. Don’t forget to mention your ability to influence senior stakeholders – we love that!
Showcase Your Certifications: If you have professional certifications like ISO27001 Lead Auditor or CISSP, make them stand out in your application. These credentials are highly valued by us and can set you apart from other candidates.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity. Plus, it shows you’re keen on joining our team!
How to prepare for a job interview at The Automobile Association
✨Know Your Frameworks
Make sure you’re well-versed in security risk and compliance frameworks, especially ISO27001. Brush up on how these frameworks align with business outcomes and risk appetite, as this will be crucial in your discussions.
✨Showcase Your Audit Skills
Prepare to discuss your internal audit capabilities in detail. Be ready to share examples of how you've independently assessed controls in regulated environments, and highlight any specific tools or methodologies you’ve used.
✨Build Relationships
Think about how you can demonstrate your ability to build effective relationships with senior stakeholders. Have examples ready that showcase your influencing skills and how you’ve embedded security requirements into operational processes.
✨Stay Current on Regulations
Familiarise yourself with the latest FCA and PRA expectations. Being able to speak knowledgeably about regulatory changes and their implications for security risk management will set you apart from other candidates.