IT Compliance Manager (ISO, GDPR), Heathrow/Staines upon Thames Area, Up to £80,000 + Strong Benefits, Lovely Company with Culture to Match, ASAP Start.
Overview on the IT Compliance Manager:
This is a newly created role in the business and the IT Compliance Manager is a varied and broad position which will encompass a mixture of ongoing operational and transformation responsibilities. This particular company are now at a scale up stage and they are now looking for an IT Compliance Manager to help drive ISO standards and IT compliance across the business. This ia an exciting time to join them plus you will really get to shape and develop how compliance will look in the business.
Project management, tracking and reporting within the Technical Services Function
Managing the Change Control processes to ensure that any changes to live systems are approved in a timely fashion before being actioned
Driving the introduction of quality standards across the business including formal ISO certifications
Acting as the Data Protection Officer for the company and liaising with their in-house legal team to ensure that they meet the requirements of GDPR
Taking responsibility for the IT security principles within the company and ensuring that they are followed at all times
Manage a regular penetration testing schedule and ensure that any issues identified are remediated by the team responsible in a timely fashion
Manage the Vulnerability assessment and remediation programme within both office and hosted environments
Take responsibility for maintaining the departments operational scorecard
Ensuring that sound IT security principles are followed within the organisation and highlighting areas where that is not the case.
Project management within the Technical Services function
Design and implement a plan to get the company certified for three ISO standards: these are ISO9001, ISO27001 and ISO22301
Communicate with all stakeholders within the business to ensure that everyone knows what is required of them by when
Align internal and external resources to deliver the project in time and on budget
Take responsibility for Data Protection within the business
Ensure that any issues of non-compliance are brought to the attention of the CTO and other relevant stakeholders in a timely manner
Assist the in-house legal team with ensuring that the ramifications of GDPR are covered
Whats in your DNA?
Strong understanding of IT security best practice
Experience of Quality standards implementation and operation
Understanding of the principles of GDPR and how to apply them
Previous experience of first time implementation of ISO standards within an organisation
Desirable - Experience of vendor selection and management Qualifications, accreditations, certifications, memberships
Desirable - A technical degree or equivalent experience
You will need to have strong project management skills and the ability to manage multiple simultaneous projects.
You will also have gained excellent interpersonal and communication skills - this is a role with many stakeholders and effective communication and influencing skills are essential.
You will need to possess the ability to steamroll through impediments, while bringing others with you, and a talent for inspiring change and improvement.