Job Description
Security Riskand Compliance Lead (OT)
Flexiblelocation - Glasgow, Ipswich, London, Selby
Permanent, full time
Closing date: Monday 11th August 2025
Who we are
We're not just talking about making a difference, we're making it happen. Wegenerate dispatchable, renewable power and create stable energy in an uncertainworld. Building on our proud heritage, we have ambition to become the globalleader in sustainable biomass and carbon removals.
You'll be joining our teams of practical doers, future thinkers and businesschampions. We're enabling a zero carbon, lower cost energy future for all, andworking hard to decarbonise the planet for generations to come.
About the role
This is an information security risk and compliance-based role, reporting intothe Head of InfoSec, Governance, Risk and Compliance via the OT Risk andCompliance Manager. You'll be part of the Information Security, Governance,Risk and Compliance Team (IGRC) but will work closely but with a wide varietyof business stakeholders including Engineering and Security teams cross-functionally.
You'll leadon all aspects of security risk management activity across the Group, butparticularly in respect to our OT environments. This role will also assist inthe delivery of Security Policy, Data Classification, and Compliance Managementin accordance with business and regulatory requirements across the Group.
The role willdeliver against the business strategy, the technical roadmap and the objectivesset out in the Security strategy.
Responsibilities include:
-Defining of Security risk assessment schedules, providing oversight to otherauthorised risk practitioners, conducting risk assessments, and maintainingaccurate security risk records and risk reports.
-Ensuring controls and risk treatment plans align with our policies andstandards.
-Leading security risk review meetings with key stakeholders and providingsecurity representation at business unit risk review and Senior Leadership Team(SLT) meetings as required, effectively communicating all Security relatedrisks and mitigations.
-Supporting with the develop and improve the Group Security Risk Managementframework.
- Effectivelyliaising with regulators, auditors, Drax teams, consultants and contractors todeliver against agreed targets.
Who we're looking for
Ideally, you'll have experience leading within a risk management role and havea good knowledge of methodologies such as IEC 62443 and ISO 27005. Knowledge ofcontrol frameworks such as NIST, IEC 62443, ISO 27001, ITIL (InformationTechnology Infrastructure Library), and SABSA is also required.
You'll need to have a structured, methodical and accurate approach with theability to interpret relevant industry regulations and standards. Ideally,you'll also be familiar with the development and maintenance of managementsystems.
This role requires strong communication and stakeholder management skills, withthe ability to influence beyond your sphere of control.
Rewards and benefits
As you help us to shape the future, we've shaped our rewards and benefits tohelp you thrive and support your lifestyle:
- Competitive salary
- 15% on-target discretionary group performance-based bonus
- 25 days annual leave (plus Bank Holidays)
- Single cover private medical insurance
- Pension scheme
We're committed to making a tangible impact on the climate challenge we allface. Drax is where your individual purpose can work alongside your careerdrive. We work as part of a team that shares a passion for doing what's rightfor the future. With Drax you can shape your career and a future forgenerations to come.
Together, we make it happen.
At Drax, we're committed to fostering an environment where everyone feelsvalued and respected, regardless of their role. To make this a reality, weactively work to better represent the communities we operate in, fosterinclusion, and establish fair processes. Through these actions, we build thetrust needed for all colleagues at Drax to contribute their perspectives andtalents, no matter their background. Find out more about our approach here .
How to apply
Think this role's for you? Click the 'Apply now' button to begin your Draxjourney.
If you want to find out more about Drax, check out our LinkedIn page to see ourlatest news.
