Who We Are
Founded in 1882, Tottenham Hotspur is an iconic English football club, playing in the Premier League and Women's Super League. From North London to the world, our fanbase spans continents, cultures, and generations. Spurs is a club that's always dared to push boundaries, breaking new ground and rewriting history.
We offer world-class facilities: In 2019, we opened our state-of-the-art Stadium, a £1 billion landmark that's the beating heart of North Tottenham's transformation. More than just a football ground, it's an engine of change — creating 4,000 jobs and injecting £300 million into the local economy every year.
We're at our brightest when we're all together. Our Club, our teams, our community.
There is only one Hotspur. Tottenham Hotspur.
The Role
Tottenham Hotspur Football Club is seeking a Cyber Security Governance Officer to support our growing cyber security and governance function. This role is crucial in ensuring the security and resilience of the Club's digital operations across Football, NFL, Boxing, Concerts, and all major events at our world-class stadium.
You will work closely with our IT teams, as well as external partners, to monitor, assess, and improve the security posture of the Club—particularly focusing on third-party suppliers and managed security service providers (MSSPs).
Responsibilities include
Third-Party Oversight:
* Support the onboarding and ongoing assessment of third-party vendors and MSSPs, ensuring compliance with the Club's security requirements and industry best practices
* Maintain an up-to-date inventory of all third-party suppliers and their security risk profiles
* Coordinate and oversee third-party cyber audits and penetration tests, ensuring timely execution and appropriate scope
* Assist with periodic vendor risk assessments and follow up on remediation actions
Cyber Risk Management:
* Support the management and maintenance of the Club's cyber risk register
* Help coordinate risk assessments for new projects, systems, and event-specific activities
* Assist in documenting and maintaining information security policies, procedures, and standards, and support compliance with relevant regulations (e.g., GDPR, Premier League requirements)
* Assist in the preparation of risk reports and dashboards for management
Governance & Compliance:
* Help document and maintain information security policies, procedures, and standards
* Support compliance activities related to data protection (e.g., GDPR), Premier League cyber requirements, and other relevant regulations
* Participate in internal and external audits as required
Incident Response Support:
* Assist with incident tracking, documentation, and post-incident reviews involving third parties or managed services
* Coordinate with service providers during incident response and resolution
Continuous Improvement:
* Stay up-to-date with emerging cyber threats, especially those relevant to sports, entertainment, and large public venues
* Engage with internal teams and third parties to drive improvements in security controls and risk mitigation
* Support training and awareness activities related to third-party cyber risk and audit processes
What you will bring
* Experienced in cyber security, risk management, or IT audit
* Understanding of cyber security principles, risk assessment, and vendor management
* Familiarity with frameworks such as NIST CSF, ISO 27001, or similar is an advantage
* Strong communication and stakeholder management skills
* Analytical mindset and attention to detail
* Experience in sports, entertainment, or large venue environments is a plus, but not essential
The Tottenham Hotspur Way
Is to push harder, rise higher and forge greater. We involve, inspire and elevate one another to be our best selves, to produce exceptional on and off the pitch. Every day brings us opportunities to improve and make the impossible, possible.
Our values that bind us
DREAM THE IMPOSSIBLE –
Impossible made possible when we think outside the box
DARE TO CHANGE THE GAME –
Relentlessly strive for glory and leave our mark on the world
DO IT OUR WAY –
Win the right way, never at all costs
Our Responsibility to you
Safeguarding is fundamental to the success in all that we do. Successful candidates are to be reminded they would be subject to various background, DBS, and reference checks for this role.
We welcome applications from anyone regardless of age, disability, gender, race, or ethnic and national origins, religion or belief, or sexual orientation.