AstraZeneca
Cybersecurity Regulatory Compliance Manager

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Cybersecurity Regulatory Compliance Manager
Macclesfield, UK (3 days on site per week)
About AstraZeneca
AstraZeneca is a global, science-led, patient-focused biopharmaceutical company that focuses on the discovery, development and commercialisation of prescription medicines for some of the world’s most serious diseases. But we’re more than one of the world’s leading pharmaceutical companies. At AstraZeneca, we are pioneering new frontiers by identifying and treating patients earlier, working towards the aim of eliminating cancer as a cause of death.
Come and join our AZ team where you will play a pivotal role in this exciting period of development!!
As Cybersecurity Regulatory Compliance Manager, you will play a central role in implementing AstraZeneca's compliance agenda. This is a delivery-focused role for someone who can confidently work across cybersecurity, risk, legal, compliance, and business teams to lead delivery of actions, drive proactive assurance, and maintain a strong and defensible compliance posture.
This role presents an opportunity to positively impact AstraZeneca’s global cybersecurity posture by building a sustainable regulatory capability, where decisions over AstraZeneca’s cybersecurity position are embedded into our every day. You will drive measurable cultural change for AstraZeneca globally, with sustained regulatory adoption, using best in class and industry leading cybersecurity practices and knowledge, directly leading the organisation’s ability to reduce regulatory risk human cybersecurity risk at scale while enabling the business to operate securely and confidently.
Key Responsibilities:
- Regulatory Implementation: Lead AstraZeneca’s cybersecurity regulatory compliance delivery, translating regulations into practical business and control requirements and setting governance and delivery plans for readiness.
- Governance Management: Run regulatory governance activities, track actions, and provide updates on compliance, risks, readiness, and delivery.
- Training and Awareness: Deliver cybersecurity regulatory training and awareness for leaders and key functions, ensuring stakeholders understand obligations and practical impacts.
- Control Framework and Assurance: Maintain and improve the cybersecurity regulatory control framework, ensuring alignment with regulatory expectations and supporting audits and readiness with robust evidence.
- Audit, Evidence, and Compliance Support: Coordinate audit and review materials, ensure evidence is complete and defensible, and drive closure of compliance gaps.
- Gap Assessment and Remediation: Lead or support gap assessments, track remediation, and help ensure improvements are implemented effectively across functions, markets, and sites.
- Incident Reporting and Regulatory Response: Own cybersecurity incident reporting obligations and coordinate cross-functional input for reporting, documentation, and regulatory response.
- Cross-Functional Collaboration: Work across business, technical, and regional teams, as well as external partners, to embed and evidence cybersecurity regulatory requirements.
- Regulatory Monitoring and Insight: Track regulatory developments and emerging risks, translating them into clear actions for stakeholders.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Requirements:
- BA/BSc degree or equivalent experience in information security, cybersecurity, computer science, law, risk, compliance, or a related subject area.
- A strong, demonstrable understanding of the principles of security governance, risk and controls frameworks within large matrix organisation with diverse countries, cultures and languages.
- Strong communication and stakeholder management skills, with the ability to translate complex regulatory requirements into practical actions and clear updates.
- Experience of interpreting and applying cybersecurity regulations, standards, or supervisory expectations in a practical business environment, ideally across multiple jurisdictions including EMEIA and the UK.
- Demonstrated ability in prioritisation and decision-making for targeting resources, i.e. markets with robust regulatory enforcement vs more relaxed regimes.
- Experience developing the implementation and maintenance of cybersecurity control frameworks, compliance activities, and assurance processes.
- Solid grasp of the relationship between cybersecurity, enterprise risk, legal interpretation, operational resilience, and regulatory compliance.
- Experience in working with data to validate decisions over risk and priority decisions.
- Proven ability in applying security standards / frameworks such as ISO27001, NIST 800-53.
- Familiarity with technical concepts in Cybersecurity, infrastructure or applications.
Desirables:
- Experience and involvement with major IT Security transformation projects or programmes.
- Project or programme management experience.
- Experience managing and/or delivering gap assessments, remediation tracking, and control uplift activities.
In Office Requirement:
When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That's why we work, on average, a minimum of three days per week from the office. But that doesn't mean we're not flexible. We balance the expectation of being in the office while respecting individual flexibility.
Join us in our unique and ambitious world.
Competitive salary and benefits package on offer! The successful candidate will have access to a flexible employee benefits fund, including holiday purchase and flexible time off, pension contributions, Share Save Plans, A performance recognition scheme and a competitive, generous remuneration package.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Date Posted
14-Jul-2026
Closing Date
21-Jul-2026
Our mission
To build an inclusive and equitable environment. We want people to feel they belong at AstraZeneca and Alexion, starting with our recruitment process. We welcome and consider applications from all qualified candidates, regardless of characteristics. We offer reasonable adjustments/accommodations to help all candidates to perform at their best. If you have a need for any adjustments/accommodations, please complete the section in the application form.
AstraZeneca
A global, science-led, patient-focused biopharmaceutical company. We focus on discovering, developing and commercialising prescription medicines for some of the world’s most serious diseases. But we are more than one of the world’s leading pharmaceutical companies. At AstraZeneca, we’re dedicated to being a Great Place to Work.
Where you are empowered to push the boundaries of science, challenge convention and unleash your entrepreneurial spirit. To embrace differences and take bold actions to drive the change needed to meet global healthcare and sustainability challenges. There is no better place to make a difference in medicine, patients, and society.
An inclusive culture where you will connect different thinking to generate new and valuable opportunities. Where you will find a commitment to lifelong learning, growth and development for all.
Our Inclusion & Diversity (I&D) mission is to create an inclusive and equitable environment where people belong, using the power of our diversity to push the boundaries of science to deliver life-changing medicines to patients. Inclusion and diversity are fundamental to the success of our company, because innovation requires breakthrough ideas that only come from a diverse workforce empowered to challenge conventional thinking.
We’re curious about science and the advancement of knowledge. We find creative ways to approach new challenges. We’re driven to make the right choices and be accountable for our actions. As an organisation centred around what makes us human, we put a big focus on people.
Across our business, we want colleagues to wake up excited about their day at the office, in the field, or in the lab. Along with our purpose to bring life-changing medicines to people across the globe, we have a promise to you: to help you realise the full breadth of your potential.
Here, you’ll do work that has the potential to change your life and improve countless others. And, together with your team, you’ll shape a culture that unites and inspires us every day. This is your life at AstraZeneca.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills