Head of Compliance
Department: 860 - Legal
Employment Type: Permanent
Location: London
Description
Arqit is a global cybersecurity company delivering quantum-safe encryption to secure data and communications for enterprises, governments, and critical national infrastructure (CNI). Powered by its advanced symmetric key cryptography, the Arqit SKA-Platform offers scalable encryption that is resilient to quantum threats. The platform allows devices to seamlessly generate and share secure encryption keys, ensuring robust data protection across sectors like telecoms, defence, and finance. Stronger, simpler encryption.
Arqit has brought together a world-leading team of pioneers in engineering and cryptography, and we now have an opportunity for a Head of Compliance/Compliance Manager to lead our compliance function. As a key member of the Operations team, you will ensure our company adheres to regulatory standards, industry best practices, and internal policies. This includes overseeing our ISO27001 certification, risk management framework, GDPR compliance, export controls, and internal auditing processes. You will play a crucial role in maintaining the integrity of our operations as we continue to grow and expand globally.
You will join our talented team, located conveniently close to Westminster, St James Park and Victoria stations, with considerable flexibility around working from home. As part of a dynamic, innovative team, you will make a significant impact by shaping and enhancing our compliance landscape. If you're focused on compliance, risk management, and data protection, and you want to contribute to a forward-thinking cybersecurity company, we'd love to hear from you!
What you'll be doing
* ISO27001 Compliance & Internal Auditing:
o Lead and maintain ISO27001 certification, including internal audits, risk assessments, and continuous improvement initiatives.
o Conduct regular internal audits, identify areas for improvement, and implement corrective actions.
* Risk Management:
o Develop, implement, and manage the company's risk management framework.
o Identify, assess, and mitigate compliance risks across all business functions.
o Collaborate with leadership to align risk management practices with company objectives.
* Data Protection & GDPR:
o Support the company's compliance with GDPR and other data privacy regulations.
o Conduct data protection impact assessments (DPIAs) and ensure privacy by design and default across products and services.
* Export Control:
o Work with the Legal department and VP Operations to create and maintain an effective framework to monitor compliance with export licenses.
o Develop a robust system to maintain evidentiary documents and policies to support regulatory audits.
o Work with Operations, Legal and Finance to create an effective program for KYC/B screening.
* Regulatory Compliance & Governance:
o Work with relevant departments to ensure regular review and maintenance of company policies, procedures and training to ensure adherence to legal and regulatory requirements.
o Prepare and present reports as necessary to senior management, the Board or Audit Committee.
* SOX:
o Work with the Group Financial Controller to support the company’s compliance with SOX.
o Lead annual SOX risk assessments.
o Perform testing of the SOX controls on a quarterly and annual basis.
What we're looking for
* Proven experience in a senior compliance role, ideally within a software, cybersecurity, or technology company.
* In-depth knowledge of ISO27001, GDPR, SOX.
* Experience conducting internal audits and managing risk frameworks.
* Some knowledge and/or experience of export control regulations and licensing requirements, specifically as they may relate to cryptography or information security systems.
* Strong understanding of UK, EU, US, and international regulatory environments as they apply to the business.
* Exceptional communication and stakeholder management skills.
* Relevant certifications such as CISM, CISSP, ISO27001 Lead Auditor/Implementer, or similar are highly desirable.
* Ability to work independently while collaborating across departments.
Please note, the ability to work in the UK without restrictions is ESSENTIAL; there may also be a need for UK security clearance in future.
#J-18808-Ljbffr