• Register
  • |
  • Sign In
menu icon

Senior Manager - Information Security Risk and Governance

Corporate Services
Work Level:
Work Level 5
Job Type:
Full Time Permanent
About The Role

We have an amazing opening within our dedicated Corporate Services department.

The Senior Manager - Information Security Risk and Governance will support the Head of Data Protection and Information Security in governing and improving information security practices, including ensuring Morrisons information security practices are compliant with industry practices and regulatory requirements. 

Supporting the management of information security risk in line with Morrisons risk appetite through the identification, analysis and monitoring of business-wide information security risk.

Ensuring that the Technology function complies with internal policies relating to information security. 

This is a full-time, permanent position which benefits from our recently launched ‘4 day working week’. Colleagues work an average of 9 hours per day and 13 Saturdays per year at 6 hours.

The role will be primarily based in our Bradford office, so we would ask that applicants live within a reasonable distance.

Responsibilities (this list is not exhaustive);

  • Ensure Morrisons information security policies are up to date and meet current industry standards. Ensure the Technology and Business teams comply with those policies

  • Act as a central point of contact to provide advice and assistance on all matters relating to information security risk and governance

  • Provide support to and develop trusted relationships across all functions and sites within Morrisons

  • Build effective working relationships with key stakeholders and teams in order to resolve problems quickly and effectively

  • Ensure that the information security operational team are engaged in the delivery,  implementation and ongoing maintenance of all technology initiatives across Central, Manufacturing, Logistics and Retail business functions

  • Complete activities required to support the operational security assessment of high and medium risk third party suppliers

  • Raise awareness and understanding of Information Security requirements across all business areas

  • Support and facilitate training and awareness briefings 

  • Support and attend committees, meetings and project working groups

  • Generate and produce reporting and metrics for committees, stakeholders and third parties

  • Support, monitor and report on the level of and maturity of information security compliance across the group.  Identifying gaps, areas of weakness and areas to drive continuous improvement and capability

  • Monitoring external trends.


About You


  • Specialist Knowledge of information security standards and good practice

  • Comprehensive understanding of information security principles and objectives

  • Good interpersonal and communication skills

  • Enthusiastic about information security

  • Keen to learn and understand more around the information security agenda and the impact on the business

  • Strong stakeholder management and influencing 

About The Company
We’re passionate about providing quality, value and freshness from farm to fork.

Putting our customers and colleagues first, our teams champion safety, quality, legality and integrity across every aspect of our business. We keep a close eye on everything to provide products and services our customers, stakeholders and communities can trust.

Caring about our customers and colleagues, we build our brand and put new ideas into action on Market Street. We audit stores and manage any incidents. We consult with government and agencies on new developments. We keep everyone safe and make sure everything is legal and top-notch quality from our logistics and manufacturing sites to our stores, suppliers and own-brand products.