Overview

Genomics England partners with the NHS to provide whole genome sequencing diagnostics. We also equip researchers to find the causes of disease and develop new treatments – with patients and participants at the heart of it all.

Our mission is to continue refining, scaling, and evolving our ability to enable others to deliver genomic healthcare and conduct genomic research. We are accelerating our impact and working with patients, doctors, scientists, government and industry to improve genomic testing, and help researchers access the health data and technology they need to make new medical discoveries and create more effective, targeted medicines for everybody.

Role

Information Security Assurance Specialist to join Genomics England. This is a meaningful role focused on assurance, governance, and compliance rather than day-to-day technical engineering. The role manages risk, ensures regulatory alignment, supports accreditation, and builds awareness across the organisation, with a particular emphasis on cyber and IT security compliance.

You will work closely with the Information Security Assurance Manager to assess risks, review policies, and support incident response activities. You will coordinate audits, supplier assessments, and penetration tests, ensuring findings are tracked and addressed. You will contribute to staff awareness and wider governance so security remains a shared responsibility across the business. This is a significant opportunity for an experienced Information Security Assurance Manager to make a real impact in a unique and forward-thinking organisation where security and trust are critical to enabling progress in genomics.

Key Responsibilities

• Support assurance, risk, and compliance activities across all services delivered by Genomics England.
• Review and contribute to cyber security policies, frameworks, and governance.
• Arrange and track audits, penetration tests, and supplier assessments, ensuring timely follow-up of findings.
• Support accreditation and regulatory compliance activities.
• Assist with cyber risk assessments, documenting and contributing to treatment plans.
• Provide input into awareness programmes to strengthen organisational understanding of security and compliance.
• Analyse and interpret data to produce clear, actionable assurance insights.
• Solid background in audit, assurance, or compliance, ideally within information or cyber security.
• Understanding of governance frameworks, regulatory requirements, and accreditation processes.
• Strong analytical skills with the ability to turn data into meaningful recommendations.
• Clear communicator, able to explain risk and compliance issues to technical and non-technical stakeholders.
• Proven organisational skills with the ability to manage multiple assurance activities.
• Experience enhancing or building assurance frameworks.
• Knowledge of supplier audits and third-party risk management.
• Familiarity with industry standards and emerging risks in cyber security.
• Experience contributing to awareness or training programmes around compliance and assurance.

Qualifications

Qualifications are not mandatory; however, certifications from ISACA, such as CISA or CISM, a Lead Auditor qualification, or equivalent, are welcome and beneficial.

Additional Information

Salary From: £51,000

Benefits include:

• Generous Leave: 30 days’ holiday plus bank holidays, long service leave, and up to 30 days remote working abroad (approval required).
• Family-Friendly: Flexible working, enhanced maternity/paternity and parental leave benefits.
• Pension & Financial: Defined contribution pension with company matching, Life Assurance, and Give As You Earn.
• Learning & Development: Individual learning budgets, support for training and certifications, and reimbursement for one annual professional subscription (approval required).
• Recognition & Rewards: Employee recognition programme and referral scheme.
• Health & Wellbeing: Subsidised gym membership, Headspace, Employee Assistance Programme, eye tests, flu jabs.

Equal opportunities Genomics England is committed to an inclusive environment that promotes equity, diversity and inclusion. We welcome applicants regardless of disability, ethnicity, gender, gender identity, religion, sexual orientation, or social background.

Genomics England’s policies of non-discrimination and equity apply to all people regardless of age, disability, gender identity, marital status, race, religion or beliefs, sex or sexual orientation, or employment status. We do not tolerate discrimination, harassment, victimisation or bullying at work. Our People policies outline our commitment to inclusivity.

We aim to remove barriers in our recruitment processes and to be flexible with interview processes. If you require adjustments to participate fully in the recruitment process, please discuss this with us.

Blended working model

Genomics England operates a blended working model. Most people are expected to come into the office a minimum of 2 times per month; some roles require full-time on-site attendance. Office locations: Canary Wharf, Cambridge and Leeds.

Onboarding and background checks

All successful candidates are subject to a Standard Disclosure and Barring Service (DBS) check. Applicants should disclose any previous offences at the point of application due to the healthcare context of the work.

Apply for this role

Fields marked with an asterisk (*) are required. This section has been removed for the refined description.