Skip to main content
Back to jobs

Operational Governance Lead

External
takeaway logoTakeaway · Fleet Place Office
Full-timeOn-siteToday
AWSCI/CDComplianceDocumentationGCPInformation Security
Cover LetterConnect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role


Benefits

Health insuranceVision insurance

Additional Information

Position: Operational Governance Lead Department: InfoSec Location: London - 3 days on-site Full Time Ready for a challenge? Then Just Eat Takeaway.com might be the place for you. We're a leading global online delivery platform, and our vision is to empower everyday convenience. Whether it's a Friday-night feast, a post-gym poke bowl, or grabbing some groceries, our tech platform connects tens of millions of customers with hundreds of thousands of restaurant, grocery and convenience partners across the globe. About this role JET's Information Security organisation protects a technology-led, cloud-native platform serving millions of customers across multiple markets. JET's Security Governance function sets the standards that keep a large, cloud-native technology organisation secure and compliant. As Operational Governance Lead, you'll own the operational delivery of JET's governance framework maintaining policies and controls, running assurance processes, and making security requirements work in practice for engineering and product teams. You'll be the day-to-day connective tissue between L1 engineering, L2 risk and compliance, and L3 audit ensuring control evidence flows cleanly and exceptions get resolved. These are some of the key components to the position: - Maintain and operationalise JET's security governance documentation policies, standards, and control models keeping them aligned to JET's risk appetite and frameworks including NIST CSF and ISO 27001. - Run governance forums and working groups, ensuring decisions are documented, tracked, and communicated to engineering, risk, and compliance stakeholders in a timely way. - Coordinate evidence gathering and control validation across L1, L2, supporting audit cycles and maintaining a clear, accountable control registry. - Draft and refine technical security standards for cloud platforms (AWS/GCP), CI/CD pipelines, and third-party integrations, working with Engineering Leads to embed these into delivery workflows. - Track exceptions and remediation plans with technical owners, escalating risks where needed and maintaining visibility across the Three Lines of Defence. - Build and maintain KPI/KRI dashboards that provide stakeholders with clear, accurate visibility of control health and compliance posture. What will you bring to the team? - Solid hands-on experience in Information Security GRC within a technology-led or cloud-first organisation, with a track record of keeping governance frameworks operational at pace. - Working knowledge of security control frameworks (NIST CSF, ISO 27001) and how they apply to modern engineering environments including cloud infrastructure, microservices, and DevOps. - Proven ability to coordinate across the Three Lines of Defence translating audit and compliance requirements into clear, actionable tasks for engineering teams without creating unnecessary friction. - Clear communicator who can explain governance requirements and control expectations to both technical engineers and non-technical risk or business stakeholders. - Organised and delivery-focused, with the ability to manage multiple governance workstreams, track remediation through to closure, and keep processes running in a fast-moving organisation. - Data-driven approach to compliance tracking comfortable building dashboards, spotting trends in control data, and surfacing the right information to support leadership decisions. At JET, this is how we play Our teams forge connections internally and work with some of the best-known brands on the planet, giving us truly international impact in a dynamic environment. Being the best at what we do isn't just about delivering on our strategy. It's a competition for something incredibly valuable - our customers' choice. Every time a customer decides where to order, they're picking a side. At the heart of the JET Customer League are our values and behaviours. They guide every interaction, every decision, every innovation. These are the actions we need to perform consistently and brilliantly, to surpass the competition and earn our customers' loyalty, again and again. Fun, fast-paced and supportive, the JET culture is about movement, growth, helping one another to succeed and celebrating wins. By truly living our values and embodying our behaviours, we're building a customer-first culture which enables us to stay one step ahead of the competition. Inclusion, Diversity & Belonging No matter who you are, what you look like, who you love, or where you are from, you can find your place at Just Eat Takeaway.com. We're committed to creating an inclusive culture, encouraging diversity of people and thinking, in which all employees feel they truly belong and can bring their most colourful selves to work every day. What else is cooking? Want to know more about our JETers, culture or company? Have a look at our career site where you can find people's stories, blogs, podcasts and more JET morsels. Are you ready to take y


Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at takeaway? Share your experience

Interested in this role?

Apply on the company's website.

Cover LetterConnect