About the role
IT Compliance & Service Manager
Middlesbrough - Hybrid
Salary - £50-60k
My client is a medium-sized, fast-moving business seeking a technically strong IT Compliance & Service Manager to lead their ISO27001 compliance programme and oversee IT service delivery. You’ll manage outsourced IT service providers, execute our information security management system (ISMS), and ensure effective Microsoft 365 governance.
This is a senior, high-impact role requiring initiative, technical depth, and strong vendor relationship management skills. You'll think independently, propose solutions, and advocate for IT governance best practices across the organisation.
Key Responsibilities ISO 27001 & IT Governance
Execute ISMS rollout and maintain policies, processes, and controls aligned with ISO 27001
Develop and maintain IT security policies, procedures, and standards
Support internal audits, risk assessments, and compliance reporting
Help steer the overall ISMS programme and ensure audit readiness
Third-Party Service Management & ITSM
Manage strategic relationships with IT service providers and oversee SLA performance
Lead vendor selection processes and coordinate between multiple service providers
Oversee day-to-day IT operations and manage incident, request, and change processes
Drive continuous improvement initiatives aligned with ITIL frameworks
Microsoft 365 Governance
Work with service providers to ensure M365 is configured, secured, and optimised
Develop governance policies and promote best practices across the business
Monitor compliance with licensing and security requirements
Stakeholder Engagement
Serve as IT representative on the Risk Committee and contribute to the Change Board
Partner with internal teams on facilities-related IT requirements
Act as trusted advisor to business leaders on IT governance and compliance matters
Required Skills & Experience
Proven experience in IT compliance, governance, or service management roles
Strong knowledge of Microsoft 365 capabilities, security, and administration
Experience managing outsourced IT providers and vendor relationships
Solid understanding of ISO 27001 and ISMS implementation
Knowledge of ITSM frameworks (ITIL) and service delivery best practices
Strong vendor management and stakeholder engagement abilities
Proactive, solutions-oriented mindset with excellent problem-solving skills
Desirable Qualifications
ISO 27001 Lead Implementer or Auditor certification
Microsoft certifications (MS-100, MS-101, Security-focused)
ITIL Foundation or higher certification
Experience in medium-sized business or scale-up environment
If this sounds like the job for you, make sure to apply today!
NRG is an equal opportunities employer committed to promoting a diverse and inclusive workplace. We oppose all forms of unlawful or unfair discrimination on the grounds of any protected characteristic. Our aim is to create an environment that encourages diversity, builds on individual differences, and responds equitably to the needs of all. We proactively take steps to fulfil our legal obligations, remove barriers, monitor for fairness, reflect the communities we serve, and enforce a zero-tolerance policy for breaches of our Equality and Diversity policy.