Risk and Compliance Manager Job Description
We are seeking a seasoned professional to join our organization as a Risk and Compliance Manager. This role is pivotal in ensuring the successful implementation and maintenance of Enterprise Risk Management, Legal and Regulatory obligations, and compliance with ISO27001 certification of an Information Security Management System.
* Maintain certification as ISO27001 Lead Implementer or similar.
* Ensure successful maintenance and maturity of the ISMS and all associated policies and processes.
* Ensure compliance with certifications, risk appetite, business objectives, and legal and regulatory obligations.
* Define, approve, communicate, conduct risk assessment and treatment processes; ensure committees are aware of critical risks, and that risk owners manage their risks effectively.
Key Responsibilities
The following tasks will be managed by the Risk and Compliance Manager:
* Update, review, and/or develop organisational literature, including strategies, plans, policies, frameworks, matrix, processes, and standards.
* Communicate such documents to relevant stakeholders and regularly review and update them to reflect changes in business requirements and strategies.
* Maintain asset and risk registers.
* Support improvement of organisational literature through presentations to relevant stakeholders.
* Ensure compliance with certification and frameworks, report non-conformities to the Board, and monitor KPIs to measure the effectiveness of frameworks.
* Lead the Risk Management Committee, circulate agendas, maintain meeting minutes, and follow up on action items.
* Support security incident response committee and processes.
* Manage Risk and Compliance awareness campaigns program and cyber simulation exercises.
* Conduct Internal Audits and Certification Audits, and manage corrective actions plans.
* Manage contracts with clients, ensuring compliance with legal, regulatory, and contractual obligations, as well as assist with client tenders, reviews, assessments, and questionnaires.
* Develop and implement Sustainability/ASRS compliance.
About Us
We focus on delivering innovative solutions to legal and business challenges. We pride ourselves on teamwork, integrity, leadership, and diversity. Our values guide our activities, and we aim to improve our people's lives both within and outside the workplace.
We offer training and development opportunities, social events, competitive paid parental leave schemes, employee achievement awards, discounted gym memberships, and health insurance.