Cyber Compliance and Regulatory Affairs Manager

Cyber Compliance and Regulatory Affairs ManagerPermanent - 75k to 95k + potential bonus and benefitsLocation: Hybrid/remote - Newport

Your new company

A leading utilities organisation in Wales are currently looking for a Cyber Compliance and Regulatory Affairs Manager to come in and spearhead the organisations compliance and regulatory affairs estate.

Your new role

You will be responsible for managing the Cyber Compliance and Regulatory Affairs. With this role, you will be interfacing with the Government and OFGEM on a regular basis, so you will need to have strong experience dealing with entities of that ilk, as well as be an expert in all things cyber compliance and regulatory related.

• Articulate and understand the strategic and future outlook and requirements from competent authorities in the field of cyber and physical security. Maintain compliance with legislation, sector-specific regulations and industry standards.
• Prepare, develop and present back all relevant business cases, financial analysis, cyber resilience investment documents, CAF aligned workstreams, and all associated documentation for both ad-hoc liaison with regulatory bodies and formal submissions.
• Develop, document and 'own' the production of the clients' NIS Annual Report, and its Annual PCD Reporting Pack.
• Assist the Head of Cyber Resilience in ensuring that the organisation complies with the NIS Regulations and the associated CAF profile requirements.
• Input in the development and continuous refinement of the Cyber Security Strategy

What you'll need to succeed

You will need to be able to influence and collaborate with other teams in the organisation, and have the ability to build strong internal relationships with other members in the business as well as other third parties and government bodies.

• A strong understanding of the NCSC's Cyber Assessment framework (CAF) and the ability to understand the de-facto controls required to meet Indicators of Good Practice.
• A solid understanding of cyber security standards and control frameworks including ISO27001, NIST, CIS etc., and the current and evolving regulatory landscape in the context of NIS and wider cybersecurity legislation.
• Experience of representing and being 'the face' of an organisation to a Regulator and building strong collaborative relationships.
• Excellent communication and leadership/management skills.
• Strong understanding of legal and regulatory requirements related to cyber security in a UK Operator of Essential Services (OES) of Critical National Infrastructure.
• Experience with DESNZ would be advantageous, but not essential.

What you'll get in return

This role is available for hybrid or remote working, although the contract won't state fully remote, I have been assured that the cyber team are able to work remotely, other than the occasional on-site meeting or catch up.

• 25 days holiday plus bank holidays
• Annual bonus based on personal and company performance
• Your 5% pension contribution will be doubled by the company, meaning 15% of your annual salary will be put into the pension pot (with you only contributing 5%).
• And more!

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV.
If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)