Working cross-functionally, this role is pivotal to the successful management and maintenance of TalkTalk’s several information security compliance certifications to provide assurance to key stakeholders, customers, and regulatory and legal bodies. 
You will foster strong relationships across our Technology, IT, Security, and Internal Audit teams and facilitate our response to our external auditors.
You will work closely with several business areas within TalkTalk to drive the Business Continuity Programme to adequately manage potential business disruption risks. 
You will be part of the Security Risk Management team, which is fundamental part of our strong and high performing Security function within TalkTalk’s Technology and Security Business Unit.
Reporting to Senior Cyber Security Compliance Manager, you will enable the business to provide services to customers in specific sectors and markets, safeguard existing revenue streams and help to promote TalkTalk’s cyber reputation.
 

• Establish compliance requirements (ISO27001, ISO22301, PCIDSS, Cyber essentials, TT’s IT financial audits), incorporating key milestones and ensuring clear accountability and ownership across the stakeholders.
• Co-ordinate the implementation and monitoring of security controls by maintaining a proactive Information Security Management System.
• Accountable for organising external audits with relevant stakeholders to ensure the audits are run effectively and efficiently.
• Working with stakeholders to operationalise agreed remediation steps where there are non-conformities or audit actions and tracking them to completion.
• Conducting quality assurance sampling on the remediation implemented to ensure it satisfies the audit findings.
• Working with stakeholders to plan and undertake business continuity planning and analysis work.
• Delivering technical advice to stakeholders by acting as a point of escalation for all areas within the scope of the role providing clear reasoned direction and advice.
• Identifying, analysing opportunities for improvement within Governance and Compliance, and collating recommendations for review.

As a recognised Top 50 Inclusive Employer in the UK, we know that diversity means success and innovation. We want our workplace to reflect the communities and customer we serve. Being inclusive is part of our DNA; we are all 100% human, and we create a culture where you can truly be yourself.

We’re also not your usual 9-5. We are a dynamic workplace and we want to talk to you about how you like to work.