Security Regulatory and Compliance Manager

Security Regulatory and Compliance Manager - Permanent - Hybrid (2x a week in office)

One of our clients is seeking a dynamic and experienced Security Regulatory and Compliance Manager to join a rapidly evolving greenfield organization within the oil and energy sector. This pivotal role will place you at the forefront of ensuring that the company remains fully compliant with all relevant regulations, including those set by OFGEM, CAF, NIS, NIST frameworks, and ISA/IEC 62443.

As a leader in this critical area, you will develop and implement the company’s comprehensive cyber security strategy and policies, ensuring that operations are secure and compliance is airtight.

This is a challenging and rewarding role that offers a unique opportunity to make a significant impact in the energy sector. As the Security Regulatory and Compliance Manager, you will play a crucial role in protecting the company’s assets and customers from security threats, ensuring safe and secure operations. Your expertise will be instrumental in shaping the future of our security and compliance practices.

Key Responsibilities:

• Lead the development and implementation of the company's security and compliance strategy.
• Ensure compliance with OFGEM, CAF, NIS, NIST, ISA/IEC 62443, and other relevant regulatory frameworks.
• Develop and implement the company's cyber security policies and risk management framework.
• Conduct thorough risk assessments and develop effective mitigation strategies.
• Raise awareness of security risks and compliance requirements across all levels of the organization.
• Respond to security incidents and breaches with agility and expertise.
• Collaborate with external organizations, including OFGEM, NCSC, and other energy companies, to share information and best practices.

Qualifications and Experience:

• Proven experience in a similar role within the energy sector or a closely related field.
• In-depth knowledge of relevant regulatory frameworks (OFGEM, CAF, NIS, NIST, ISA/IEC 62443).
• Strong understanding of risk management and cyber security strategies.
• Excellent leadership and communication skills.
• Ability to work collaboratively with internal teams and external partners.