Senior Compliance Manager

Вимоги

• 5-7 years of experience in compliance management, with a focus on Information Security, Privacy, and BCP
• 27001:2022 Internal Auditor training certificate
• IT background or experience in the IT industry
• In-depth knowledge of relevant regulations, standards, and frameworks (e.g., ISO 27001, GDPR, ISO 22301, ISO 9001)
• Experience in passing external certifications
• Leadership and mentoring skills
• Excellent communication skills with the ability to explain compliance requirements in clear and understandable language for all stakeholders
• Advanced analytical abilities
• Effective research skills
• Advanced level of English

Would be a plus

• Understanding of ITIL/ITSM, CMMI for Services, OWASP SAMM, or similar frameworks
• Proficiency in GRC/Compliance Software

Обов'язки

• Providing leadership and oversight to ensure the organization’s compliance with relevant regulations and standards
• Providing mentorship and guidance to Compliance Managers
• Implementing, developing, and supporting management systems within the company, such as ISMS and QMS
• Exploring, implementing, and supporting privacy requirements (GDPR) to ensure alignment with data protection regulations
• Developing and implementing comprehensive policies and procedures that align with regulatory requirements and monitoring and assessing compliance managers’ documented policies
• Leading and conducting thorough audits to identify areas of risk, non-compliance, and opportunities for improvement
• Leading the identification of non-conformities and providing recommendations for corrective actions
• Collaborating with relevant stakeholders to identify and assess risks and managing regular risk assessments
• Developing, updating, and implementing advanced compliance training programs for employees across all levels while managing compliance managers’ support for the awareness program
• Investigating, resolving, and providing guidance for compliance managers on complex requests and complaints, ensuring appropriate corrective actions are taken
• Investigating and implementing automation of compliance processes