Compliance Associate

London, United Kingdom

VIRTUS Data Centres

VIRTUS Data Centres provide secure, scalable, and flexible colocation services across Europe and the UK. Discover our facilities today.

View all jobs at VIRTUS Data Centres

Apply now Apply later

About VIRTUS

VIRTUS Data Centres is the UK’s fastest-growing data centre provider which owns, designs, builds, and operates the country’s most efficient and flexible data centres.

In May 2023 we announced our plans to expand into continental Europe, with our first data centre due to open in Berlin in 2026, to be quickly followed by two full campuses and expansion into other countries in the pipeline.

Our purpose is to serve humanity by being an active, positive participant in the 4th industrial revolution. When we talk about our purpose, we refer to our customers’ customers; the child playing a computer game, the person watching their favourite movie, booking a medical appointment, a plane ticket, a hotel, or doing their online banking; those things can’t be done if we don’t do our job.

Our mission is to consistently exceed the expectations of customers through innovative, high-quality solutions and services. We employ intelligent thinkers – people with positive attitudes, who add to the quality of our customer proposition and business.

We value individual endeavour and initiative and encourage teamwork and togetherness because collective experience and expertise are VIRTUS’ greatest strengths.


Job Summary

We are seeking a meticulous and detail-oriented Compliance Associate to join our Compliance Team. The Compliance Associate will play a crucial role in ensuring our organisation's adherence to industry regulations, standards, and internal policies. The ideal candidate possesses a strong analytical mindset, exceptional organisational skills, and a keen eye for identifying potential compliance risks.

This role offers the opportunity to work in a collaborative and cross-functional team environment, contribute to process improvement, and the maintenance of a culture of integrity and ethical behaviour.

Duties and Responsibilities

The role includes but is not limited to the following: -

  • Control and manage the Internal Assurance Audit Schedule against the full requirements of ISO 27001, ISO 22301, and ISO 9001
  • Supporting all audit activities to assess the effectiveness of compliance programmes and controls and relevant ISO/IEC20000-1 customer questionnaires and information security breaches where possible
  • Complete annual legal compliance assessments against all relevant information security legislation
  • Manage relevant ISO audits, PCI DSS audits, and SOC2 audits.
  • Maintain, with regularity, the Statement of Applicability and Register of Organisation Controls relevant to Confidentiality, Integrity and Availability.
  • Drive continual improvement through administration and control of internal audit corrective/preventative actions.
  • Own and champion an Information Security awareness programme and induct all relevant new starters
  • Support the Compliance Manager in customer compliance/governance responses.
  • Ensuring DORA (Digital Operational Resilience Act) risk management, governance, and self-assessments are completed.
  • Devise training plans and provide data protection advice and support for members of staff
  • Ensure the company’s policy is in accordance with the General Data Protection Regulation (GDPR) and codes of practice

Any other reasonable requests made by your line manager.

What success looks like in 12 months’ time:

  • Fully up to speed with VIRTUS’ Compliance procedures and processes relating to information security and business continuity management systems
  • Build strong relationships with relevant stakeholders across the VIRTUS teams and have a solid understanding of how the business works
  • Run the external audit process

Person Specification

  • A technical understanding of associated standards (ISO/IEC 27001 / ISAE3000 series and TSP)
  • IRQA qualified internal auditor for ISO/IEC 27001, ISO 9001 and ISO 22301
  • In-depth knowledge of Enterprise-class risk management systems
  • Subject matter expert in Information Security principles and best practice
  • In-depth knowledge of Data Protection Act 2018-related controls
  • The ability to communicate dynamically at all levels and to external partners, as well as internal stakeholders
  • An energetic and results-driven personality is essential for keeping pace with the business’s growth plans.
  • Keen eye for accuracy of data and interpretation of audit results.
  • Highly skilled in planning and scheduling internal audits against predetermined criteria.
  • An energetic and results-driven personality is essential for keeping pace with the business’s growth plans.

In line with VIRTUS’ Vetting Policy, the successful applicant must be willing to undergo a BS7858 screening process.

Remuneration package and benefits:

  • Private healthcare
  • Pension contribution scheme
  • Eye and dental care benefit
  • Discretionary bonus
  • Income Protection
  • Life Assurance
  • Cycle to work scheme
  • Annual travel card loan
  • Tech Scheme
  • Electric car scheme
  • Workplace extras - Byond card and Extras discount

VIRTUS is an equal-opportunity employer. As part of our commitment to fight for equality, we work to ensure a fair and consistent interview process. We celebrate diversity and we are committed to an inclusive work environment.

We reserve the right to close this post for applications should sufficient applications be received.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  1  0
Category: Compliance Jobs

Tags: Audits Banking Compliance GDPR Governance Industrial ISO 22301 ISO 27001 PCI DSS Risk management SOC 2

Perks/benefits: Flex hours Salary bonus Startup environment

Region: Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.