Global law firm offering legal services while embracing innovation and celebrating diversity and inclusion.
About the role
- Information Security Compliance Specialist at Netcraft focusing on security and compliance programs. Collaborating with teams for audits, vendor reviews, and customer assurance while maintaining high standards.
Responsibilities
- Help demonstrate, maintain, and continuously improve security and compliance programmes
- Support customer and prospect security reviews, including questionnaires, due diligence requests, and assurance documentation
- Assist with RFP and tender responses, focusing on information security, privacy, and risk
- Maintain Netcraft’s library of standard responses and supporting evidence
- Help maintain and improve the Netcraft Compliance Hub and Trust Centre
- Assist the Compliance Manager maintain security policies, processes, and customer facing security documentation
- Track key compliance actions, deadlines, and metrics
- Support vendor onboarding and third-party security reviews
- Support audit readiness and certifications such as SOC 2 Type II and Cyber Essentials
Requirements
- Experience or strong working knowledge in information security, compliance, assurance, or risk
- Familiarity with security frameworks such as SOC 2 and Cyber Essentials
- Strong written communication skills, with the ability to explain security concepts clearly and accurately
- Strong organisational skills and attention to detail, comfortable managing multiple deadlines
- Technical curiosity and a willingness to learn and develop
- Nice to have: Experience supporting compliance and assurance activities in a technology, SaaS, or regulated environment
- Nice to have: Exposure to customer, partner, or internal assurance processes (e.g., procurement reviews, questionnaires, RFPs, tenders, audits, or risk assessments)
- Nice to have: Knowledge of third party, risk management, or vendor onboarding controls (including tracking actions and follow-ups)
- Nice to have: Awareness of privacy and data protection concepts, such as GDPR
Benefits
- Hybrid and flexible working options
- 33 days holiday per annum (incl. public holidays)
- Salary sacrifice pension with matched employer contributions up to 5% + NI savings
- Private health cover, including access to a private GP service
- Spot reward bonus scheme to reward truly outstanding contributions
- Comprehensive wellness and support provisions
- Equity Tracking Scheme (Eligibility criteria apply)
- Enhanced family leave provisions
- Two days paid Volunteering Leave per year
- Free meals, drinks and snacks provided daily in the offices
- Regular social events such as board game nights, big summer party and annual kick-off
- Inclusive culture and environment, where you’ll feel genuinely valued and respected
- A tax-efficient cycle to work scheme.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Cloud Cybersecurity Engineer supporting multi - cloud environments for critical USAF missions. Designing, deploying, and maintaining security for AWS, Azure, Google, and Oracle Clouds.
Information Systems Security Engineer (ISSE) driving cybersecurity initiatives in the Digital Modernization Sector. Supporting A&A efforts and ensuring security compliance with federal requirements.
Intern supporting occupational safety and health initiatives at ALTEN Mexico. Assisting in risk management and promoting safe work environments through regulatory compliance and innovation.
Senior SAP Security Specialist working with SAP Security solutions on customer projects. Responsible for workshops and leading consultancy in SAP Security environments.
Cybersecurity Engineer ensuring the security of IT & OT systems at ArianeGroup. Collaborating with internal teams and overseeing compliance and protection measures.
Professional focused on Cloud Security solutions and DevSecOps at innovative tech consulting firm Leega. Implementing security for AWS services and integrating security analysis tools.
Internship for building and deploying SSE/MASE system while working closely with management at I3P, a firm specialized in electrical networks.
Technicien d'installation de dispositifs antichute supervisant l'installation et la sécurité. Participer aux visites de chantier, préparer et gérer l'installation avec une autre personne.
Installs complete fall protection systems ensuring safety compliance. Managing team and quality of work on construction sites in a hybrid role.