Compliance Manager

Join us at Digital Catapult, where you'll lead and maintain our ISO 9001 Quality Management System and ISO 27001 Information Security Management System. You will be responsible for ensuring that all processes are fully compliant, conducting regular internal audits, reviewing and updating processes, and overseeing continuous improvement initiatives. Additionally, you will take us through all external audits, helping to ensure we achieve full accreditation in ISO 27001, and continue to pass the bi-annual ISO 9001 surveillance audits and re-certification audits

WHAT YOU’LL DO (Duties)

• Manage and maintain the ISO 9001 Quality Management System and ISO 27001 Information Security Management System (ISMS), ensuring all policies, procedures, and practices comply with the standards.
• Manage the preparation and execution of external ISO 9001 and ISO 27001 audits, working closely with external auditors and ensuring all documentation and evidence are accurate and up to date.
• Monitor key performance indicators (KPIs) for quality objectives, ensuring continuous improvement initiatives are developed and embedded in business processes.
• Conduct regular risk assessments and security audits to identify and mitigate any risks to information security.
• Conduct regular internal audits, working with cross-functional teams to resolve any non-conformities raised during audits and to track corrective actions.
• Develop and maintain all necessary documentation, policies, and procedures required for ISO 9001 and ISO 27001 compliance.
• Promote a culture of continuous improvement in relation to quality and information security.
• Identify and implement best practices to enhance operational efficiency and effectiveness while ensuring compliance with ISO standards.
• Work on the preparation and implementation of other ISO standards as needed, such as ISO 45001 Health and Safety and ISO 14001 Sustainability & Environmental
• Participate actively in improving our customer experience / Suggest proactively every improvement that could enhance customer satisfaction

Requirements

• Previous experience of implementing and managing ISO 9001 and ISO 27001 compliant management systems, including defining and implementing structures, processes and tools, managing accreditation and driving business and cultural change. Ideally this would include experience in a technology-led business.
• Enthusiastic about the benefits of the management system approach and for monitoring the application of set quality management systems and process compliance.
• Experience of designing and implementing internal quality and IT security audit plans, analysing and reporting on the results and advising the business on how to address identified non-conformance.
• Experienced in the preparation and execution of external ISO 9001 and ISO 27001 audits, working closely with external auditors and ensuring all documentation and evidence are accurate and up to date.
• Drafting, reviewing and simplifying policy and process documents that operate under the ISO9001 and ISO27001 quality management systems.
• Experience of working with and influencing staff at all levels of an organisation including the Senior Management Team
• Demonstrable track record of having influence across a business in relation to quality and regulatory compliance.
• Ability to review and simplify compliance procedures at enterprise level and ensure these remain current and fit for purpose.
• Experience of acting as a subject matter expert for best practice compliance with ISO9001 and ISO27001.
• Experience of other ISO standards such as ISO 45001 Health and Safety and ISO 14001 Sustainability & Environmental would be an advantage
• ISO 9001:2015 Lead Auditor Certification and ISO 27001:2022 Lead Auditor Certification

Deadline for Applications: Friday 22nd November 2024

Commitment to Equality, Diversity and Inclusion

We recognise and value the advantages and opportunities that come with having people from diverse backgrounds working with us and it is our ambition to build an organisation which is representative and reflective of UK society. We are part of the Catapult network and we are actively committed to our Inclusivity in Innovation Charter, about which you can find out more here.

We welcome applications from neurodivergent candidates, candidates from minority and underrepresented groups and from candidates with more or less experience, provided the requisite skills can be demonstrated.

As members of the Disability Confident Scheme, we guarantee to interview all disabled applicants who meet the minimum criteria for the vacancy. Please do speak with us about adjustments that could support you through our interview process.

Digital Catapult is an equal opportunities employer.

Benefits

• We are in the UK’s Top 100 Best Workplaces and placed in the UK’s Best Workplaces in Tech and Large Organisations.
• Digital Catapult is a Disability Confident Committed Level 1 Employer.
• Excellent holiday package: 25 days annual leave, Bank Holidays and 3 days between Christmas and New Year:
• Double-matched pension up to 10% of your salary;
• 4% of your salary to use towards selecting benefits that work for you, including health cash plan, Private Medical Insurance; buying holiday, topping up your pension;
• E-Vehicle Scheme; Cycle2Work; Tech Scheme; Gym Discounts; Give As you Earn; PerkPal;
• Life insurance 4x salary;
• Free to access EAP & Financial Wellbeing advice;
• Enhanced maternity and paternity leave;
• Hybrid working - with great offices to work from 2 days per week with some roles needing to be onsite more regularly to ensure the successful delivery of our work;
• Investment in your ongoing learning and development with us;
• Company social events throughout the year and free office snacks!

We have a vibrant and engaging culture where all voices are heard and a variety of employee led affinity groups who champion initiatives and provide opportunities for feedback to be shared.

We use moments in the year to educate everyone at Digital Catapult on different aspects of Equity, Diversity and Inclusion and to raise awareness.

We also enjoy socialising and having fun together through a variety of company-wide events held throughout the year including our football team, running and climbing groups and volunteering activities.