Senior Cyber Governance, Risk and Compliance Manager, Open to flexible working

London (Greater), Cardiff or Glasgow
London: £46,250- £70,397 Glasgow/Cardiff: £43,650-£64,640
21 Apr 2021
10 May 2021
Contract Type

Ofgem works on behalf of energy consumers to ensure that every household and business in the UK can rely on a safe, affordable and environmentally sustainable energy supply. 

What we do matters: making a difference to people’s lives now, and for generations to come. We offer a diverse range of flexible working career opportunities: roles that are stimulating and rewarding. And it’s important to us that we recruit from a wide range of professional and personal backgrounds – bringing different perspectives and experiences to our work. 

Our Cyber Security Directorate has two main objectives: protecting the UK National infrastructure (focusing on improving security and resilience in the Downstream Gas and Electricity sector) and ensuring that Ofgem follows best practice to ensure the security, privacy and resilience of our people, data, operations and facilities. We now have an opportunity for an experienced cyber governance, risk and compliance professional to play a lead role in this vital area of our work, ensuring the GB electricity and gas sectors remain resilient against cyber and related security threats.

You’ll advise on related policy and governance matters, fostering excellent relationships with a range of stakeholders, in the energy industry, in government and within the security community. You’ll use agile and/or waterfall approach to develop regulatory policies, guidance, framework and enhance security protocols in service and compliance development; undertaking threat, security risk and impact assessments to identify and remedy any vulnerabilities; and where applicable, deliveries that are supported by rigorous testing regimes.

We expect that you will be educated to degree level in a cyber or technology-based discipline or that you hold a professional security qualification such as CISSP, CISM, CISA, CCP – SIRA/Auditor/Architect, ISO27001:2013, CEH, or GCISP. You should already have proven experience in secure-by-design, digital services, agile and waterfall project management processes. And you’ll be accustomed to developing and managing essential security outputs such as asset registers, threat analysis, risk assessments, treatment plans, policies and guidance. It’s important that your technical expertise is supported by good all-round communication skills and you should already hold (or be able to achieve) SC clearance, in accordance with national security vetting procedures.

Ofgem is proud to be an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for all employees. All employment is decided on the basis of open and fair competition, merit and business need.

Ofgem can offer you a comprehensive benefits package, which includes: 

  • Up to 30 days’ annual leave 
  • Excellent training and development opportunities 
  • The opportunity to join the Civil Service pension arrangements, which include a valuable range of benefits 
  • Flexible working hours and family friendly policies 
  • Subsidised gym
  • Interest free season ticket loan
  • Rental deposit scheme
  • Perkbox (staff discount scheme)
  • Employee Wellbeing Programme.


For further information and to submit your application please click 'Apply'