Interim Compliance and Information Security Manager

A spinoff from OakNorth Bank, at OakNorth Credit Intelligence (ONCI) we are building a SaaS platform which transforms commercial lending by helping banks build deeper relationships with their clients, open new, more profitable opportunities, whilst delivering credit decisions up to ten times faster than traditional methods, with lower risk and greater efficiency.
This came as a result of our realisation that despite small and medium sized companies (SMEs) being a powerful force in the economy, many of them find it difficult to raise capital during critical stages of their company growth. Traditional commercial lending is highly rigid often making them misaligned with a company’s requirements.  We aim to solve this problem at ONCI.
We’re dedicated to helping trailblazing businesses thrive and our Compliance and Information Security team is integral to our growth. In a nutshell, the mission of an Interim Compliance and Information Security Manager is to ensure our organisation maintains the highest levels of compliance and security standards by leading audits, overseeing risk assessments, and driving continuous improvement.
Are you ready to step up to the challenge?

Responsibilities:

• Audit Management: Lead SOC 2 and ISO 27001 (surveillance) audits whilst driving continuous improvement and identifying areas for automation
• Vendor & Customer Due Diligence: Classify vendors by risk level, ensuring appropriate certifications or assessments are conducted and manage customer due diligence requests
• Compliance Oversight: Maintain and update compliance and information security evidence, conduct risk and vulnerability assessments and enforce and improve policies
• Incident Management & Reporting: Manage incidents and prepare compliance and security status reports for the board of directors. Manage remediation activities

Requirements:

• Hands-on experience leading SOC2 and ISO27001 audits.
• Strong knowledge of auditing principles, risk assessment, and control testing.
• Excellent communication and relationship-building skills with both internal and external stakeholders.
• Ability to analyse and document complex business processes.
• Knowledge of security principles, practices, and protocols.
• Detail-oriented with a focus on balancing compliance and business priorities.
• Practical exposure to various security products and platforms.
• Ability to work independently and collaboratively.
• Familiarity with compliance tools like Vanta.
• Experience in FinTech compliance.

Benefits & Perks:

• Equity. We want people to have a stake in the business so that all our interests are aligned.
• 25 days holiday
• Personalized benefits – opt-in to what matters to you
• Subsidised Private Medical Insurance with Bupa
• Enhanced maternity and paternity leave
• Wellbeing and social events
• In-house Barista Bar in London office
• Support causes that matter to you – Volunteering time off
• Salary sacrifice schemes (Cycle to work, nursery, gym, electric car scheme)