We are on the search for a highly experienced and strategic leader to join AccessPay as Director of Governance, Risk, Compliance (GRC), Cyber Security, and Internal IT. This is a critical role to ensure that as a business we adhere to stringent regulatory requirements, maintain strong governance and risk management practices and place cyber security at the forefront of everything that we do. This is an exciting opportunity to lead this function as part of a well-established and supportive senior leadership team.
You will have previously worked in a highly regulated, mission critical environment and will be adept at advising on complex regulatory issues. You will lead an established team of 10 individuals consisting of three functional heads.
Key responsibilities
Governance, Risk and Compliance
* You will oversee AccessPay’s governance, risk and compliance practices working with a small team of compliance and audit professionals.
* Proactively identify opportunities to improve overall risk monitoring, mitigation and management.
* Lead the enhancement of our GRC framework that aligns with regulatory standards, including those set by financial authorities and industry bodies such as ISO.
* Ensure continuous compliance with applicable laws, regulations, and standards, such as PCI-DSS, GDPR, and financial services-specific regulations.
* Manage relationships with regulators and external auditors and support the internal audit team continuously and throughout external audits.
* Provide advice and support on complex regulatory issues and be continuously scanning the regulatory landscape for new and emerging developments.
* Support strategic projects with 3rd parties.
Cyber Security
* Lead the development and execution of a cyber security strategy to protect AccessPay's sensitive financial data, customer information, and critical IT infrastructure.
* Lead incident response and disaster recovery planning, ensuring readiness for potential cyber security incidents and business continuity scenarios.
* Proactively assess vulnerabilities through penetration testing, threat modelling, and regular security assessments, and implement mitigation plans.
* Embed a culture of cyber resilience by driving company-wide security awareness programs, training sessions, and regular phishing simulations.
* Ensure compliance with cyber security frameworks and standards relevant to the fintech industry (e.g., ISO 27001, NIST, SOC 2).
* Collaborate with product and technology to ensure security and privacy by design is truly embedded into new product development and product enhancement.
* Collaborate closely with IT infrastructure and technology operations on the security of our infrastructure and live estate.
Internal IT
* Oversee the design, operation, and scalability of AccessPay’s internal IT infrastructure to meet the growing demands of the business.
* Ensure IT systems operate securely, efficiently, and in compliance with industry regulations and internal governance policies.
* Manage the implementation of secure IT tools and technologies that support innovation and operational excellence.
What experience will you bring?
* It is essential that you have considerable experience in a senior leadership role in a highly regulated environment preferably in the payment space.
* You must have worked for a ‘mission critical’ company.
* A subject matter expert on industry regulations and standards including PCI, ISO, SOC2, FCA and DORA.
* Industry qualifications/certifications CISSP, CISA or CRISC will be advantageous.
* Demonstrated success in building and implementing GRC programs and cyber security strategies in a highly regulated environment.
What type of person are you?
* You will be an exceptional leader who leads through the team of experts. You will adept at maintaining a helicopter view of the team and being hands on when needed.
* You must be able to work under pressure in a continuously changing environment.
* Communicate complex topics in a relevant and simple way, with excellent communication skills.
* You will have a pragmatic approach to risk and balance this with business objectives.
* You will excel in building cross functional relationships to ensure that yourself and the team are embedded in the business.
In addition to a competitive salary, you will also be granted options in our Share Option Scheme. You will be entitled to 25 days’ holiday + 8 bank holidays increasing with length of service. Every employee receives their birthday off work and can be taken on any day in their birthday month. 2 Volunteer days a year. We operate a salary exchange pension scheme which you will be auto enrolled into from day one of employment. Free Gym Membership with Pure Gym or £240 yearly Wellbeing Allowance. Enhanced maternity, paternity, and adoption leave. Cycle to work scheme. Health cash plan. Free breakfast & lunch food when in the Manchester office. Discounted Parking in Manchester. Access to training – both internal and external. We plant a tree for every new starter that joins us!
#J-18808-Ljbffr