Information Security, Risk & Compliance Officer

Location: Co. Kerry

Type: Full-time / permanent / On-Site

Our Client is hiring an Information Security, Risk & Compliance Officer to help shape and lead their security, risk, and compliance agenda. This role will have visibility across the full business, from governance and policy through to incident response and resilience.

This is a strategic, hands-on position for someone who can define and execute security strategy, strengthen enterprise risk and compliance programmes, and work closely with senior stakeholders to embed security and resilience across IT services and operational environments.

Key responsibilities

• Set, implement, and drive an organisation-wide security strategy aligned to business priorities and regulatory obligations.
• Own and enhance risk and compliance programmes to ensure risks are identified early, assessed consistently, and mitigated effectively.
• Track, evaluate, and report on the performance of security controls protecting systems, data, and technology assets.
• Create, maintain, and enforce information security policies and standards in line with regulatory requirements and agreed risk objectives.
• Lead incident response activities, ensuring swift containment, remediation, and continuous improvement through lessons learned.
• Establish security architecture principles and guardrails to enable secure design, delivery, and operation of IT services.
• Deliver security assessments and translate findings into actionable plans (including disaster recovery improvements where relevant).
• Act as a key advisor to senior stakeholders on information security, risk posture, and compliance matters.
• Help develop security capability and organisational structure, contributing to attraction, development, and retention of security talent.
• Drive business continuity and operational resilience planning across the organisation.
• Put clear ownership in place across the application life cycle to ensure alignment, performance, security, and data quality expectations are met.

Experience & skills

• Relevant degree (or equivalent professional experience) in Information Security, Risk Management, Computer Science, IT, or similar.
• 5+ years experience owning enterprise security strategy and aligning security initiatives with business and IT goals.
• Strong background in security architecture and security operations, including monitoring, threat intelligence, and incident response.
• Demonstrated implementation of recognised security frameworks such as ISO 27001 and/or the NIST Cybersecurity Framework.
• Experience designing and maintaining security controls in OT / industrial / manufacturing settings.
• Proven track record building IT risk management approaches and leading compliance / regulatory activities.
• Experience selecting, on boarding, and managing IT and security vendors/third parties.
• Confident communicator able to translate complex security topics for senior leadership and C-suite audiences.

Desirable certifications: CISSP, CISM, CRISC (or similar).

If you match the above and want a role with real ownership across security, risk, compliance, and resilience, apply with a CV outlining relevant achievements in governance, security operations, incident response, and framework implementation (ISO 27001 / NIST), plus any exposure to OT/industrial environments.