Security Compliance Specialist

About the Role:

At Deliveroo, our mission is to build the definitive food company by transforming how our customers eat, making food more convenient and accessible. To Achieve this, we prioritise security to protect the data and money of our customers, employees, partners, riders, and investors. As a technology-driven leader in a rapidly expanding industry, we value autonomy, ownership, and innovation. Our small team makes a significant impact, tackling some of the most intriguing challenges out there. 

We are seeking a pragmatic and motivated Security Compliance Specialist with a solid understanding of security policies, standards, awareness and compliance. In this hands-on role, you will support the development, implementation, and compliance monitoring of our information security policy suite. You will work on a variety of security policy implementation projects, directly influencing how Deliveroo operates securely, and engaging with stakeholders across the business to drive higher maturity. 

What You'll Be Doing:

• Develop and implement information security policies, standards, and guidance in collaboration with stakeholders. 
• Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2.
• Coordinate responses to internal and external audits and liaise with key stakeholders.
• Develop and deliver security policy awareness and training programs.
• Assess policy compliance, track risk exposure, and support continuous compliance initiatives.
• Produce management reports on security compliance and metrics for relevant committees.

Requirements:

• Minimum 3 years of experience in information security, ideally in a public tech company or regulated industry.
• Experience in developing and implementing information security policies, standards and procedures.
• Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2.
• Strong skills in security metrics and reporting.
• Ability to engage collaboratively with technical and non-technical stakeholders. 
• Excellent written and verbal communication skills. 
• Confidence in delivering awareness and training sessions. 

We’re also interested in…

• A mix of consulting and industry experience in a relevant role. 
• Industry certification such as CISM, CRISC, CISO, or CISSP. 

Why Deliveroo?

Our mission is to be the definitive food company. We are transforming the way the world eats by making food more convenient and accessible. We give people the opportunity to eat what they want, when and where they want it.

We are a technology-driven company at the forefront of the most rapidly expanding industry in the world. We are still a small team, making a very large impact, seeking to answer some of the most interesting questions out there. We move fast, value autonomy and ownership, and we are always looking for new ideas.

Workplace & Diversity

At Deliveroo we know that people are the heart of the business and we prioritise their welfare. We offer a wide range of competitive benefits in areas including health, family, finance, community, convenience, growth and relocation.

We believe a great workplace is one that represents the world we live in and how beautifully diverse it can be. That means we have no judgement when it comes to any one of the things that make you who you are - your gender, race, sexuality, religion or a secret aversion to coriander. All you need is a passion for (most) food and a desire to be part of one of the fastest growing startups in an incredibly exciting space.

Please click here to view our candidate privacy policy.