Information Security Compliance & Risk Specialist

Posting date:	18 November 2025
Salary:	£44,241 per year
Additional salary information:	This role is part of the Government Digital and Data Profession, and the role attracts a Digital and Data allowance of up to £14,756, subject to an assessment of your skills and experience during the interview process
Hours:	Full time
Closing date:	30 November 2025
Location:	Southampton
Company:	Government Recruitment Service
Job type:	Permanent
Job reference:	437251/1

Summary

Information Security is the practice of assuring the security, confidentiality, integrity and availability of all MCA assets (information, technology, people, systems, equipment) throughout the MCA and its suppliers.

This role is part of the Compliance & Risk team, within Information Security, providing internal assurance services around Government Security Standard compliance, the MCAs Information Security Management System (ISMS) compliance and Information Security threat and risk management processes for all asset types, in line with strategic objectives.

The Maritime and Coastguard Agency (MCA) implement the government’s maritime safety policy in the United Kingdom and works to prevent the loss of life and occurrence of pollution on the coast and at sea.     

Safer lives. Safer Ships. Cleaner Seas.     

Our vision is to be a world-leading organisation, accelerating the transition to sustainable shipping with non-negotiable safety standards. We put our people, our customers and our planet at the heart of everything we do.    

We are committed to giving all our colleagues purpose, professionalism and pride in what we do. We work in supportive, diverse and inclusive teams.  

We want everyone to feel valued and supported to achieve their potential at MCA.  

This culture of inclusion is underpinned by our staff networks groups covering, Women’s, LGBTQI+, Race, Carers, Mental Wellbeing and volunteer Respect Ambassadors.

The Information Security Compliance and Risk Specialist will:

• Develop & maintain the MCA’s Information Security Management System (ISMS) and all underpinning documentation, including stakeholder engagement & compliance checks.

• Be responsible for the delivery of information security risk management processes, across all asset types, providing risk-based advice & guidance to asset owners across the business and carrying out regular reviews of the MCA’s risk/threat landscape.

• Be the coordinator for annual compliance reviews and audits, managing the implementation of remediation action.

• Managing the development & delivery of the security training and awareness plan for the business.

For further information about the role and responsibilities, please see the attached role profile. 

Proud member of the Disability Confident employer scheme

About Disability Confident

A Disability Confident employer will generally offer an interview to any applicant that declares they have a disability and meets the minimum criteria for the job as defined by the employer. It is important to note that in certain recruitment situations such as high-volume, seasonal and high-peak times, the employer may wish to limit the overall numbers of interviews offered to both disabled people and non-disabled people. For more details please go to Disability Confident.