Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
AVEVA

Director, Information Security – GRC

AVEVA

Director, Information Security at AVEVA leading GRC function in protecting digital assets and ensuring compliance. Building and managing high-performing teams in a complex international environment.

Posted 6/18/2026full-timeCambridge • 🇬🇧 United KingdomLeadWebsite

About the role

Key responsibilities & impact
  • Leads AVEVA’s Governance, Risk and Compliance function within the central Digital Security organization
  • Accountable for policies, standards, and governance frameworks that protect AVEVA’s digital estate and products
  • Responsible for the risk assurances required to make informed business decisions
  • Sets standards for federated teams
  • Manages the full policy lifecycle in response to evolving threats and business context
  • Owns the enterprise security risk register and operates governance processes
  • Engages business owners in risk treatment decisions
  • Leads the TPRM programme and assesses security posture of suppliers
  • Coordinates investment and improvement initiatives to advance programme maturity
  • Manages AVEVA’s compliance posture across applicable regulatory frameworks
  • Builds and develops a high-performing GRC team with a culture of intellectual curiosity

Requirements

What you’ll need
  • 10+ years in information security with at least 5 years in a senior role
  • Proven track record of building and leading teams in complex, international and multi-stakeholder environments
  • Experience reporting security risk to executive leadership and parent company governance structures
  • Expertise in GRC frameworks: ISO 27001, NIST CSF, NIS2, IEC 62443, SOC 2
  • Strong understanding of security policy lifecycle management, control framework design, and risk register governance
  • Experience in operating in regulated markets (ISO 27001, SOC 2, NIS2, IEC 62443)
  • Professional certifications: CISSP, CISM, CRISC, or ISO 27001 Lead Implementer / Lead Auditor

Benefits

Comp & perks
  • Competitive package with an attractive bonus incentive plan
  • Regionally specific benefits ranging from above the norm paid vacation
  • Contributions to retirement investment plans or pensions
  • Insurances
  • Other memberships and perks designed to enhance the workplace experience, your health, and wellbeing
  • Flexible benefits fund
  • Emergency leave days
  • Adoption leave
  • 28 days annual leave (plus bank holidays)
  • Pension
  • Life cover
  • Private medical insurance
  • Parental leave
  • Education assistance program

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
information securityGRC frameworkssecurity policy lifecycle managementcontrol framework designrisk register governance
Soft Skills
leadershipteam buildingstakeholder engagementcommunicationorganizational skills
Certifications
CISSPCISMCRISCISO 27001 Lead ImplementerISO 27001 Lead Auditor