Location
London (Hybrid working available with at least two days a week in an office or site location)

Hours
Full Time

Salary
£68,167 per annum

About the Role
Join Notting Hill Genesis and help protect the data that protects over 60,000 residents across London. As Cyber Security Compliance Lead, you will be at the forefront of strengthening governance, managing risk, and maintaining compliance across our digital landscape. You will work closely with colleagues across the organisation to embed security standards and manage frameworks such as NIST, ISO27001, and Cyber Essentials, ensuring we meet evolving regulatory expectations. This key role will shape our cyber resilience and make security a proactive business enabler.

Your responsibilities will include defining and maintaining cyber security policies and procedures, leading cyber audits, vulnerability management, penetration testing, and disaster recovery oversight. You will manage governance and risk management processes, communicate cyber security goals to senior management, monitor supplier security performance, and stay current with legislation including UK GDPR, DPA, and PCI-DSS. You will also support strategic compliance plans and collaborate with Governance, Risk, and Data Protection teams to maintain alignment and best practice across NHG.

Experience
- Substantial experience in cyber governance, risk, or compliance roles
- Strong working knowledge of ISO27001, NIST 800-53, and Cyber Essentials Plus accreditation
- Experience with vulnerability and risk management processes
- Working understanding of data protection legislation including UK GDPR, DPA, and PCI-DSS
- Experience engaging with security and threat intelligence networks such as NCSC

About you
You are a passionate and proactive security professional with the technical depth and leadership to make a difference. You combine a solid understanding of compliance frameworks with the ability to engage, influence, and drive continuous improvement across diverse teams. You embody values of compassion, progressiveness, dependability, inclusivity, and empowerment, putting people and residents at the heart of decisions while striving for innovation and collaboration.

Qualifications
- CISSP (or equivalent) professional qualification required
- Project management qualification (Prince2, Agile) preferred