Director, Information Security - Assurance
Hybrid · London, England, United Kingdom or Cambridge, England, United Kingdom
Job Summary
Director, Information Security - Assurance leads AVEVA’s Security Assurance function within the central Digital Security organization, a second-line leadership role accountable for independently testing whether security controls are operating as designed and for providing evidence underpinning risk assurances to leadership and to Schneider Electric. The role designs and operates controls assurance programmes across IT, cloud, and product security, drives automation to enable ongoing, evidence-based control monitoring, and oversees external audit and certification readiness (ISO 27001, SOC 2). It requires building and leading a high-performing Assurance team, collaborating with GRC and federated teams, and translating findings into actionable risk insight for executives and governance bodies. The position emphasizes leadership, strategic alignment with business goals, and a culture of perfomance excellence within AVEVA’s Digital Security function, with hybrid working arrangements in Cambridge or London and up to on-site collaboration as needed.
Required Qualifications
- 10+ years in information security with at least 5 years in a senior role biased towards building audit/assurance capability
- Experience designing and operating controls assurance programmes across IT, cloud, and product security domains
- Experience owning or leading external audit and certification processes (ISO 27001, SOC 2) including evidence gathering, auditor management, and remediation tracking
- Certifications: CISSP, CISA, CISM, or ISO 27001 Lead Auditor
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.