Operational Governance Lead

Posted 4 Days Ago
Be an Early Applicant
Hiring Remotely in Office, Machaze, Manica, MOZ
Remote
Senior level
Marketing Tech • Software
The Role
Own operational delivery of security governance: maintain policies, run assurance and governance forums, coordinate evidence and audits, draft cloud/CI/CD security standards, track exceptions and remediation, and build KPI/KRI dashboards to report control health across engineering, risk, and audit.
Summary Generated by Built In

Position:  Operational Governance Lead

Department: InfoSec

Location: London - 3 days on-site

Full Time

Ready for a challenge? 

Then Just Eat Takeaway.com might be the place for you. We’re a leading global online delivery platform, and our vision is to empower everyday convenience. 

Whether it’s a Friday-night feast, a post-gym poke bowl, or grabbing some groceries, our tech platform connects tens of millions of customers with hundreds of thousands of restaurant, grocery and convenience partners across the globe.

About this role

JET's Information Security organisation protects a technology-led, cloud-native platform serving millions of customers across multiple markets.

JET's Security Governance function sets the standards that keep a large, cloud-native technology organisation secure and compliant. As Operational Governance Lead, you'll own the operational delivery of JET's governance framework maintaining policies and controls, running assurance processes, and making security requirements work in practice for engineering and product teams. You'll be the day-to-day connective tissue between L1 engineering, L2 risk and compliance, and L3 audit ensuring control evidence flows cleanly and exceptions get resolved. 

These are some of the key components to the position:  

• Maintain and operationalise JET's security governance documentation policies, standards, and control models keeping them aligned to JET's risk appetite and frameworks including NIST CSF and ISO 27001.

• Run governance forums and working groups, ensuring decisions are documented, tracked, and communicated to engineering, risk, and compliance stakeholders in a timely way.

• Coordinate evidence gathering and control validation across L1, L2, supporting audit cycles and maintaining a clear, accountable control registry.

• Draft and refine technical security standards for cloud platforms (AWS/GCP), CI/CD pipelines, and third-party integrations, working with Engineering Leads to embed these into delivery workflows.

• Track exceptions and remediation plans with technical owners, escalating risks where needed and maintaining visibility across the Three Lines of Defence.

• Build and maintain KPI/KRI dashboards that provide stakeholders with clear, accurate visibility of control health and compliance posture. 

What will you bring to the team? 

• Solid hands-on experience in Information Security GRC within a technology-led or cloud-first organisation, with a track record of keeping governance frameworks operational at pace.

• Working knowledge of security control frameworks (NIST CSF, ISO 27001) and how they apply to modern engineering environments including cloud infrastructure, microservices, and DevOps.

• Proven ability to coordinate across the Three Lines of Defence translating audit and compliance requirements into clear, actionable tasks for engineering teams without creating unnecessary friction.

• Clear communicator who can explain governance requirements and control expectations to both technical engineers and non-technical risk or business stakeholders.

• Organised and delivery-focused, with the ability to manage multiple governance workstreams, track remediation through to closure, and keep processes running in a fast-moving organisation.

• Data-driven approach to compliance tracking comfortable building dashboards, spotting trends in control data, and surfacing the right information to support leadership decisions. 

At JET, this is how we play 

Our teams forge connections internally and work with some of the best-known brands on the planet, giving us truly international impact in a dynamic environment. 

Being the best at what we do isn’t just about delivering on our strategy. It's a competition for something incredibly valuable – our customers' choice. Every time a customer decides where to order, they're picking a side. 

At the heart of the JET Customer League are our values and behaviours. They guide every interaction, every decision, every innovation. These are the actions we need to perform consistently and brilliantly, to surpass the competition and earn our customers’ loyalty, again and again.  

Fun, fast-paced and supportive, the JET culture is about movement, growth, helping one another to succeed and celebrating wins. By truly living our values and embodying our behaviours, we’re building a customer-first culture which enables us to stay one step ahead of the competition.

Inclusion, Diversity & Belonging 

No matter who you are, what you look like, who you love, or where you are from, you can find your place at Just Eat Takeaway.com. We’re committed to creating an inclusive culture, encouraging diversity of people and thinking, in which all employees feel they truly belong and can bring their most colourful selves to work every day. 

What else is cooking?

Want to know more about our JETers, culture or company? Have a look at our career site where you can find people's stories, blogs, podcasts and more JET morsels.

Are you ready to take your seat? Apply now! 

#LI-CA1

Skills Required

  • Hands-on experience in Information Security GRC within a cloud-first or technology-led organisation
  • Working knowledge of security control frameworks (NIST CSF, ISO 27001) and their application to cloud, microservices, and DevOps
  • Experience drafting and refining technical security standards for cloud platforms (AWS/GCP), CI/CD pipelines, and third-party integrations
  • Proven ability to coordinate across the Three Lines of Defence and translate audit/compliance requirements into actionable engineering tasks
  • Strong communication skills to explain governance and controls to technical and non-technical stakeholders
  • Organised, delivery-focused with experience managing multiple governance workstreams and tracking remediation to closure
  • Data-driven approach to compliance tracking and building KPI/KRI dashboards to surface trends and control health
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Amsterdam
15,313 Employees

What We Do

Just Eat Take​away​.com is a lead­ing glob­al online food deliv­ery mar­ket­place, con­nect­ing con­sumers and restau­rants through our plat­form in 20 coun­tries. Like a dinner table, working at JET brings our office employees and couriers together. From coding to customer service to couriers, JET is a fun, fast-paced and supportive place where you can be yourself. No day is the same. Our days are filled with new experiences. We see every challenge that comes our way as a chance to grow, both the business, and ourselves. We’re connected to millions of food-lovers, hundreds of thousands of connected partners and some of the best-known brands of the planet. When you take your seat here, you’ll find that a simple scribble on a napkin can turn into something seen by millions. Together we transform, create, reinvent and empower every food moment. As a leading online food tech company, JET brings together the stability of a global business, with the agility of a start-up. We got here by always staying one step ahead of the competition. So load up your plate with ideas that get you excited, because at JET everything is on the table. https://careers.justeattakeaway.com

Similar Jobs

Clearwater Analytics (CWAN) Logo Clearwater Analytics (CWAN)

Designer

Fintech • Software • Financial Services
Remote or Hybrid
2 Locations
1100 Employees
102K-144K Annually

Suite Studios Logo Suite Studios

Intern - General Application

Cloud • Digital Media • Professional Services • Database
Remote or Hybrid
Office, Machaze, Manica, MOZ
20 Employees

CrowdStrike Logo CrowdStrike

Growth Development Representative (Hybrid)

Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
Remote or Hybrid
Office, Machaze, Manica, MOZ
10000 Employees

Mondelēz International Logo Mondelēz International

Global Consumer Data Platform Product Lead

Big Data • Food • Hardware • Machine Learning • Retail • Automation • Manufacturing
Remote or Hybrid
3 Locations
90000 Employees

Similar Companies Hiring

Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account