Radius is seeking a Compliance Manager for large IT organisation who is experiencing a level of growth and are leaders in their industry.

Responsible for managing externally appointed auditors and for the maintenance of a variety of ISO standards.

Responsible for the adherence to and continued certification of the following standards:

• ISO 9001 Quality Management System
• ISO 27001 Information Security Management System
• PCI-DSS Payment Card Industry Data Security Standard
• ISO 22301 Business Continuity
• GDPR and Data Protection Laws

Conduct regular internal audits in line with the requirements of the standards.

Implement compliance initiatives, identify and assess corporate risk, investigate customer and corporate incidents, monitor continuous improvement, recommend effective controls and processes, and integrate specific compliance objectives within business units. Influence senior management in identifying compliance risks and provide appropriate commercial solutions.

Monitor industry, regulatory and corporate developments in order to identify areas of vulnerability and risk.

Develop and implement corrective/preventative action plans for the resolution of compliance issues and provide guidance and coaching on how to avoid future incidents.

Communicate the compliance programme to all employees. Prepare and deliver presentations to executives, managers and other interested parties reporting on status of compliance initiatives. Meet with the business to build relationships and enhance their capability to manage risk.

Create a defined process that allows for the evaluation, approval and adoption of all new compliance and certification activities to ensure clear ownership, documented processes, and proper controls.

Assist the Board in defining a Business Continuity Plan appropriate to the business.

Identify, record, maintain and report on business risks associated to standards.

Maintain applicable registers in support of non-conformance, risk, legal compliance, etc.

Esablish and maintain a timetable for annual testing of the Business Continuity Strategy.

Develop induction materials and implement training programs for staff in respect of Information Security and Business Continuity.