IT Compliance & Service Manager

Middlesbrough - Hybrid

Salary - £50-60k

My client is a medium-sized, fast-moving business seeking a technically strong IT Compliance & Service Manager to lead their ISO27001 compliance programme and oversee IT service delivery. You'll manage outsourced IT service providers, execute our information security management system (ISMS), and ensure effective Microsoft 365 governance.

This is a senior, high-impact role requiring initiative, technical depth, and strong vendor relationship management skills. You'll think independently, propose solutions, and advocate for IT governance best practices across the organisation.

• Execute ISMS rollout and maintain policies, processes, and controls aligned with ISO 27001
• Develop and maintain IT security policies, procedures, and standards
• Support internal audits, risk assessments, and compliance reporting
• Help steer the overall ISMS programme and ensure audit readiness

Third-Party Service Management & ITSM

• Manage strategic relationships with IT service providers and oversee SLA performance
• Lead vendor selection processes and coordinate between multiple service providers
• Oversee day-to-day IT operations and manage incident, request, and change processes
• Drive continuous improvement initiatives aligned with ITIL frameworks

• Work with service providers to ensure M365 is configured, secured, and optimised
• Develop governance policies and promote best practices across the business
• Monitor compliance with licensing and security requirements

• Serve as IT representative on the Risk Committee and contribute to the Change Board
• Partner with internal teams on facilities-related IT requirements
• Act as trusted advisor to business leaders on IT governance and compliance matters

• Proven experience in IT compliance, governance, or service management roles
• Strong knowledge of Microsoft 365 capabilities, security, and administration
• Experience managing outsourced IT providers and vendor relationships
• Solid understanding of ISO 27001 and ISMS implementation
• Knowledge of ITSM frameworks (ITIL) and service delivery best practices
• Strong vendor management and stakeholder engagement abilities
• Proactive, solutions-oriented mindset with excellent problem-solving skills

• ISO 27001 Lead Implementer or Auditor certification
• Microsoft certifications (MS-100, MS-101, Security-focused)
• ITIL Foundation or higher certification
• Experience in medium-sized business or scale-up environment

If this sounds like the job for you, make sure to apply today!

NRG is an equal opportunities employer committed to promoting a diverse and inclusive workplace. We oppose all forms of unlawful or unfair discrimination on the grounds of any protected characteristic. Our aim is to create an environment that encourages diversity, builds on individual differences, and responds equitably to the needs of all. We proactively take steps to fulfil our legal obligations, remove barriers, monitor for fairness, reflect the communities we serve, and enforce a zero-tolerance policy for breaches of our Equality and Diversity policy.