Head of Cyber Governance, Risk and Compliance na SGN

Head of Cyber Governance, Risk and Compliance

London | Hybrid | Full-time | Personal Contract

Competitive pension scheme – Enhanced maternity/paternity pay – Life assurance – HolidayPlus – Cycle2work Scheme & more

REQ5121

As a strategic leader in Governance, Risk and Compliance, you will guide SGN’s cyber security and regulatory approach, ensuring our operations remain secure, resilient and fully compliant.

We deliver safety, warmth, and comfort to homes and businesses. Every role, whether in the office or on the front line, plays a key part in this mission. Here’s how you will contribute…

Governance, Risk & Compliance (GRC) Leadership

• Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001/2, and NIST-2.
• Oversee delivery plans, resource allocation, and stakeholder engagement for GRC initiatives.

Training & Awareness

• Develop and maintain SGN’s Information Security training and awareness materials.
• Integrate lessons learned from incidents and address feedback from training delivery.

Information Security Policy & ISMS

• Maintain a robust portfolio of security policies, standards, and procedures to support ISO27001, NIST, and NIS eCAF compliance.
• Ensure policies are current, reviewed regularly, and approved by key stakeholders.
• Manage SGN’s Information Security Management System (ISMS) and policy exceptions.

Compliance & Assurance

• Monitor and report on compliance across SGN and third-party partners.
• Lead assurance reviews and support internal/external audits for ISO27001, NIST, and NIS.
• Own NIS submissions to OFGEM and support regulatory consultations and audits.

Risk Management

• Oversee risk assessments and reporting across Cyber, OT, and Gas Control.
• Establish and enforce risk management processes and reporting to the CISO.

Advisory & Stakeholder Engagement

• Provide expert advice on information security risks and controls.
• Maintain relationships with external bodies and represent SGN in relevant forums.

Performance & Reporting

• Oversee security performance indicators and ensure timely reporting to internal and external stakeholders.
• Manage bi-monthly phishing tests and remediation actions.

Regulatory & Funding Support

• Ensure compliance with legal and regulatory changes, advising on business impact.
• Support funding documentation for RIIO2 & RIIO3 programmes.
• Track and report on audit actions and outcomes

What you will need

Required Qualifications

• The individual should be educated to degree level in a relevant discipline. Must be one of CISM/CISSP/CISA/TOGAF/CRISC.
• Must have 5 years’ cyber security experience.
• Must have proven expertise in Compliance Management, Information Security Risk and Audit.
• Individual Competencies
• Excellent understanding and hands-on experience of working with Regulators and providing compliance updates for an OT environment.
• Excellent understanding of the NIS Regulations and the NCSC Cyber Assessment Framework.
• Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc.
• Excellent command of written English.
• Strong interpersonal and relationship building skills.
• The role will require Security Clearance.

Not sure you meet every requirement?

Research shows some people – particularly women and those from underrepresented backgrounds – may hesitate to apply unless they meet every criteria. At SGN, we value diverse backgrounds, experiences and perspectives.

If this role interests you but you’re not sure you tick every box, we’d still love to hear from you. You might be just who we’re looking for – now or in the future.

Why SGN?

SGN is a leader in pioneering research and development toward a net-zero energy system. Our cutting-edge technologies and innovative thinking are driving change in the gas industry, all while keeping people safe and warm.

About us | Benefits | Diversity and inclusion

If you require any accommodations or support during the application process, reach out to us. We're here to help ensure an inclusive and accessible experience for everyone.

https://www.youtube.com/watch?v=7Q_sWyz7KEI