Description
We’re looking for an Information Security & Compliance Specialist to take charge of our information security management systems (ISMS), data handling, and compliance processes as we scale. You’ll bridge the gap between our brilliant engineers and key stakeholders, auditors, clients, and beyond; making complex security and compliance processes simple, clear, and effective. From owning certifications like ISO 27001 to tackling cybersecurity risks, this role is all about leadership, ownership, and communication in a fast-paced, high-growth environment!
Key Responsibilities
* Own our ISMS and QMS: Keep them up-to-date, effective, and easy for everyone to understand.
* Lead certifications: Manage ISO 27001, Cyber Essentials Plus, UK Trust Framework, and prep for SOC 2, GDPR, and ISO 9001.
* Simplify security: Translate complex tech from engineers into clear updates for clients, auditors, and teammates.
* Audit master: Perform internal audits of ISMS, QMS, and data handling policies.
* Cyber watchdog: Monitor and respond to cybersecurity risks, keeping our systems secure.
* Tech manager: Oversee endpoint devices, IT software, and our cloud-based systems (like AWS).
This role is all about details, problem-solving, and keeping security simple and approachable!
Skills, Knowledge and Expertise
* ISMS/QMS Expertise: You’ve built or maintained information and quality management systems before, ensuring everything is organised and audit-ready.
* Audit Experience: Whether internal or external, audits are your jam. You’ll be diving deep to keep our compliance spotless and our stakeholders happy.
* Compliance Knowledge: GDPR, ISO 27001, SOC 2, Cyber Essentials, know at least one, be eager to learn the rest.
* Tech Awareness: A solid understanding of cloud infrastructure helps you collaborate with our engineers seamlessly.
* Empathetic Communication: Your job is to make security accessible and relatable for everyone, from teammates to clients.
* Ownership Mindset: You’ll need to step up, take charge, and make things happen from day one.
* Stakeholder Management: You’ll be working with people from different backgrounds and need to handle their expectations with finesse.
* Problem-Solving Under Pressure: You’ll thrive by staying calm and finding creative solutions to keep us on track.
What we offer
Zinc offers a chance to work on a product that brings a fresh perspective on data ownership in hiring.
* 24 days holiday + Bank Holidays + your birthday off
* £1200 annual benefits allowance (ThanksBen, from month 2)
* Early finish Fridays (16:00)
* Yearly company retreat to Serbia
* Enhanced Maternity, Paternity, and Adoption Leave (2 months full pay, then statutory)
* Statutory pension with NEST (3% employer, 5% employee)
* Zinc shares, issued through the EMI Scheme
* Unlimited access to MoreHappi coaching
* Company socials, quarterly team socials, Free Monday lunches
* Nursery workplace benefit scheme (Yellownest)
* Option to lease an electric car through Electric Car Scheme
* Celebrated Zinc anniversaries
About Zinc
Zinc builds automated reference and background checking tools designed to improve candidate experience and set new industry standards. Founded in 2017 by a team with extensive HRTech experience, Zinc is an early-stage startup rapidly growing as it redefines efficiency, transparency, and fairness in background checks.
We're a culture first company, defined by a respectful and autonomous approach to all employees, fostering support for new ideas, promoting a flexible work environment, and operating within a flat structure. Our culture drives employees to embrace innovation, share successes, and feel motivated about the company's future.
We recently redefined our company values: Pragmatic, Integrity, Empathy, Collaborate, Empowered, Speed.
#J-18808-Ljbffr