We are looking for a Senior Information Security Compliance Analyst to lead and maintain Sodexo's Information Security Management System (ISMS) and ensure ongoing ISO27001 certification. This role will oversee the delivery of Information Security compliance activities across the UK & Ireland, supporting our PCI‑DSS programme and maintaining Cyber Essentials Plus compliance. The successful candidate will also manage third‑party security assurance across our supplier landscape and work closely with Legal teams to ensure appropriate Information Security requirements are embedded within contracts.Join Sodexo and be part of something greater. You belong in a team where you can act with purpose and thrive in your own way.For more information on Sodexo Careers please visit Sodexo Careers Main ResponsibilitiesBuild an annual consolidated Information Security Compliance Programme that provides the business, IT of visibility of internal and external Audit & Assurance activity to allow appropriate demand & resource planningDeliver effective Security Compliance reporting to inform Risk & Issue reporting to the CISO, IT & Business Senior LeadershipEnsure Audit & Assurance actions are managed, tracked, and reported through to mitigationISO27001Ensure the ISMS is managed and maintained in alignment with the Statement of Applicability and ISO27001/2 frameworkDefine requirements for the ISMS, document and implement security policies to develop and maintain the ISMSManage and maintain the ISMS document setRun regular audits of the activities on locations covered by the ISMS scopeDevelop a plan to scale up ISO27001 practices to a wider scope to improve overall security maturityExplore opportunities for consolidation of ISMS where practical and appropriatePCI-DSSBuild and maintain a PCI-DSS compliance programme that provides direction and assurance of operational controls to meet Sodexo's compliance requirementsSupport PCI-DSS compliance efforts in performing and/or coordinating information security audits across payment channels / business segmentsCoordinate and support the PCI-DSS Audit Activity to ensure delivery of the ROC and the AOCCyber Essentials Build and maintain a CE compliance framework that provides prioritised and targeted assurance activitiesSupport CE compliance efforts in performing and/or coordinating targeted CE compliance monitoring across applicable segments and related Sodexo infrastructureWork with internal and external stakeholders to deliver CE certifications and recertificationsPlease see attached job description for further information regarding the role requirementsThe Ideal CandidateExpert knowledge and practical experience of ISO27001 certification requirements and ISMSdocumentationExpert knowledge and practical experience of PCI DSS certification requirementsExpert knowledge and practical experience of Cyber Essentials certification requirementsExperience of leading and performing internal or external IT auditsExperience of dealing with third party supplier auditsExperience of negotiating with stakeholders in designing relevant action plansExperience of comprehensive IT internal audit program design and developmentGeneral knowledge of IT environments and technologiesGeneral Knowledge of Security Architecture or Enterprise ArchitectureDesirable Certifications: CISA, CRISC, QSA, ISO27001 LI, ISO27001 LA.Ability to communicate effectively to a wide range of people from various horizons, both written and verballyAnalytical and problem-solving capabilitiesProactive and able to overcome obstaclesRigorous and organisedAbility to gain Government Security ClearancePackage DescriptionCompetitive salary depending on experienceWorking with Sodexo is more than a job; it's a chance to be part of something greater.You'll belong in a company and team that values you for you; you'll act with purpose and have an impact through your everyday actions; and you'll be able to thrive in your own way.In addition, we offer20 Sodexo benefits such as Sodexo retirement plan, discounts to over 1,900 brands to shop online, Gym discount to maintain a healthy lifestyle, a confidential 24/7 employee assistance programme providing independent support to overcome whenever life has its obstacles including emotional support, legal and financial advice.For further details regarding our Sodexo benefits please see attached. Ready to be part of something greater? Apply today!About The CompanyAt Sodexo, our purpose is to create a better everyday for everyone to build a better life for all.As the global leader in services that improve the Quality of Life, we operate in 55 countries, serving over 100 million consumers each day through our unique combination of On-Site Food and FM Services, Benefits & Rewards Services and Personal & Home Services.We're all about building a workplace for the future, we believe in equal opportunities, and we celebrate diversity.We're an inclusive workplace, where everyone is welcome, everyone can be natural, and be the best versions of themselves.We recognise that we're on a journey with regards to diversity and inclusion and would therefore welcome applications for candidates from underrepresented backgrounds.We're a Disability Confident Leader employer. We're committed to changing attitudes towards disability, and making sure disabled people have the chance to fulfil their aspirations. We run a Disability Confident interview scheme for candidates with disabilities who meet the minimum selection criteria for the job.