Security Compliance Analyst
Liverpool, England, United Kingdom
The Very Group
About us
We are The Very Group and we’re here to help families get more out of life. We know that our customers work hard for their families and have a lot to balance in their busy lives. That’s why we combine amazing brands and products with flexible payment options on Very.co.uk to help them say yes to the things they love. We’re just as passionate about helping our people get more out of life too; building careers with real growth, a sense of purpose, belonging and wellbeing.
Role Purpose
The Security Compliance Analyst is responsible for safeguarding the organisation by ensuring adherence to relevant security standards, regulations, and internal policies. This role involves developing, implementing, and maintaining a comprehensive compliance framework to mitigate risks, protect sensitive information, and foster a culture of security awareness.
About the role
The Security Compliance Analyst will oversee all aspects of security compliance within the organisation. This includes developing and implementing compliance programmes, conducting audits and assessments, managing relationships with stakeholders, and driving continuous improvement initiatives.
Key Decisions
- Prioritisation of compliance initiatives based on risk assessment
- Selection of appropriate compliance frameworks and standards
- Determination of audit and assessment frequency and scope
- Approval of remediation plans for compliance gaps
- Allocation of resources for compliance activities
Key Responsibilities.
- Develop, implement, and maintain a comprehensive compliance programme
- Conduct risk assessments and identify compliance gaps
- Develop and implement policies, procedures, and controls to address compliance requirements
- Manage compliance documentation and reporting
- Conduct internal and external audits and assessments
- Prepare for and manage regulatory examinations
- Provide compliance training and awareness to employees
- Participate in incident response activities to identify and address compliance implications
Required skills and experience
- Working knowledge of relevant security standards and regulations (e.g., GDPR, PCI DSS, ISO 27001)
- Understanding of risk management and compliance frameworks
- Good project management and organisational skills
- Analytical and problem-solving abilities
- Effective communication and interpersonal skills
- Ability to build relationships and influence stakeholders
Benefits
- On Target bonus (Business and Personal performance)
- £250 of flexible benefits allowance.
- 27 days holiday + bank holidays + option to purchase 5 additional days
- 6% matched pension
- Hybrid working - 3 days per week from our Speke HQ.
- Brand discount up to 25%
- Ongoing training and development.
Hiring Process
What happens next?
Our talent acquisition team will be in touch if you’re successful so keep an eye on your emails! We’ll arrange a short call to learn more about you, as well as answer any questions you have. If it feels like we’re a good match, we’ll share your CV with the hiring manager to review. Our interview process is tailored to each role and can be in-person or held remotely.
You can expect a three-stage interview process for this position:
1st Stage - An initial informal chat with a member of our TA Team.
2nd stage - A 30-45 minute video call with a member of the hiring team to discuss your skills and relevant experience. This is a great opportunity to find out more about the role and to ask any questions you may have.
3rd Stage – A more formal interview with a number of the Team.
As an inclusive employer please do let us know if you require any reasonable adjustments.
Equal opportunities
We’re an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance GDPR Incident response ISO 27001 PCI DSS Risk assessment Risk management
Perks/benefits: Career development Equity / stock options Flex hours Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.