Compliance Manager

March 16

Apply Now

Get a free AI resume review

Arbor Education

WebsiteLinkedInAll Job Openings

Arbor MIS helps schools and MATs work more easily and collaboratively. Join a free webinar: http://bit.ly/Arbor-webinars

Education • Management Information Systems • Big data • Data visualisation • Technical support

51 - 200

💰 Private Equity Round on 2020-12

Description

• Lead internal and external audits related to ISO27001, ISO9001, PCI-DSS, and Cyber Essentials Plus. • Develop, implement, and manage the Information Security Management System (ISMS) in accordance with ISO27001 standards. • Report to senior management on compliance status and recommend improvements or corrective actions as needed. • Work with DevSecOps and platform leads to ensure platform level security is compliant and mature • Work with Product Managers and Engineers to identify and remediate security weaknesses in the product, and platform infrastructure • Work with Group Legal counsel and CRO to ensure our licenses and agreements are adequate and fit for purpose • Own and operate the Compliance Operating Model, including running the security working groups, steering groups, and the management committee • Capture continuous improvement tasks and work with the business to complete them • Set OKR’s for security annually that ensure continued improvements in Information Security • Monitor changes in compliance regulations and update internal policies and practices accordingly. • Conduct regular training sessions for staff to ensure awareness and understanding of compliance policies and procedures. • Assist in security incident response and resolution, and subsequent post-mortems and retrospectives • Participate in tech-talks and team based learning to ensure knowledge is spread • Serve as the primary point of contact for all matters related to information security compliance.

Requirements

• Experience in a compliance or information security management role, with a strong understanding of ISO27001, ISO9001, PCI-DSS, and Cyber Essentials Plus frameworks. • Proven track record of managing information security systems and compliance programs. • Excellent leadership and team management skills. • Strong analytical, organisational, and decision-making abilities. • Excellent communication skills, both written and verbal. • Ability to work independently and manage multiple priorities in a fast-paced environment. • Experience with SecureFrame, or other security tooling would be a bonus

Benefits

• 32 days holiday (plus Bank Holidays). This is made up of 25 days annual leave plus 7 extra company wide days given over Easter, Summer & Christmas • Enhanced maternity and adoption leave (20 weeks full pay) and paternity (6 weeks full pay) pay • 5 free return to work maternity coaching sessions • Access to services such as Calm, Bippit (financial wellbeing coaching) and Health Assured (Employee assistance programme) • Dedicated professional development training budget • Volunteer with a charity of your choice for a day each year • Dog friendly offices!