Overview
We’re working with a leading technology solutions provider that delivers cloud and managed services to customers across a variety of sectors including finance, manufacturing and retail. They are looking to hire a Compliance Officer to join their People & Compliance team, taking responsibility for day-to-day management of internal compliance and governance activities across the business. This role will support both internal stakeholders and customer-facing teams, ensuring compliance frameworks, certifications and regulatory obligations are maintained and continuously improved.
Responsibilities
- Managing and maintaining ISO 27001, ISO 9001 and ISO 22301 management systems.
- Supporting internal and external ISO audits.
- Managing supplier and vendor compliance audits.
- Tracking organisational risks and non-conformances through to resolution.
- Managing annual compliance training programmes.
- Maintaining customer compliance documentation and sales client packs.
- Managing business continuity documentation, BIAs and testing activities.
- Performing horizon scanning, PESTLE analysis and risk assessments.
- Managing GDPR, UK Data Protection Act and related compliance requirements.
- Maintaining Information Asset Registers, ROPA and DPIA documentation.
- Supporting compliance with NIS2 and DORA requirements.
- Supporting the implementation, rollout and maintenance of SOC II Type 2 controls.
- Managing health and safety systems, risk assessments and associated documentation.
- Coordinating health and safety training activities.
- Maintaining office compliance records and facility inspections.
- Supporting customer audits, onboarding requirements and compliance enquiries.
Qualifications
- Experience managing ISO 27001, ISO 22301 and ISO 9001 management systems.
- Experience working with external auditors.
- Experience managing business continuity programmes, testing and risk management activities.
- Hands‑on experience with SOC II Type 2 controls and compliance requirements.
- Experience managing health and safety systems and risk assessments.
- Strong knowledge of GDPR and the Data Protection Act.
- Understanding of DORA, NIS2 and related regulatory requirements.
#J-18808-Ljbffr…
