This is a senior leadership role with ownership of cyber governance, risk and assurance for a UK Critical National Infrastructure operator
Job Summary
This is a senior leadership role with ownership of cyber governance, risk and assurance for a UK Critical National Infrastructure operator.
You’ll shape policy, lead enterprise cyber risk management and direct a robust assurance programme, providing clear executive‑level insight and confidence that cyber risks are understood, controlled and compliant in a highly regulated environment.
ScottishPower offers a competitive salary with annual review, a comprehensive benefits package including pension double matching, healthcare options, and various schemes supporting wellbeing and sustainability.
Matching Summary
This is a senior leadership role with ownership of cyber governance, risk and assurance for a UK Critical National Infrastructure operator.
Salary
Base: Competitive; Bonus/Equity: Annual bonus; Benefits: Car allowance and other benefits
Skills & Requirements
Must-have
Cyber governance leadership
Enterprise cyber risk management
Second-line assurance programme
Control testing and supplier assurance
Regulatory compliance in cyber security
Executive-level cyber risk reporting
Budget management
Nice-to-have
Building and developing cyber teams
Aligning UK and global security priorities
Stakeholder management and influence
Working in highly regulated environments
Supporting diversity and inclusion
Key Requirements
CISSP, CISM or GICSP certification
Proven cyber governance leadership experience
Experience in critical infrastructure cyber security
Strong assurance background at second line of defence
Ability to translate technical risk for executives