About the Role
The Policy Implementation and Compliance Lead role is responsible for defining Cybersecurity and Group Technology policies and ensuring that a policy framework is in place which ensures technical policy and compliance outcomes are clearly linked. This includes managing compliance initiatives, facilitating audit activity, and ensuring risks are clearly identified, assessed, owned, actively managed, and remediated effectively where appropriate.
The role will provide guidance to both the technology organization and business stakeholders to ensure that policies are understood, the approach to policy implementation is technically fit-for-purpose, and compliance outcomes are achieved.
Working with all Divisions and Group Functions, you will need to ensure compliance by reviewing the end-to-end process, identifying gaps, and supporting stakeholders on remediation of risks. You will need to work at multiple levels, having an appreciation of the details but also being able to articulate the wider vision to ensure the Press adheres to our Cybersecurity and Group Technology policies.
Reporting to the Head of Cybersecurity, Risk and Resilience, the role will provide regular reporting including updates on the risk landscape and compliance position.
This role will have a wide remit. Supporting all of OUP, it will be responsible for ensuring end-to-end compliance throughout OUP’s Technology product lifecycle. The successful candidate will collaborate with key Technology stakeholders to ensure that all legal, regulatory, and contractual security requirements are understood, considered, and met.
We operate a hybrid working policy that requires a minimum of 2 days per week in the Oxford office.
#J-18808-Ljbffr