Compliance Manager

£52,000

Full-time • Remote in UK or Edinburgh HQ

Closing date: May 6, 2024

Why Amiqus?

  • We support remote, hybrid and flexible working, ensuring you’re provided with the equipment you need to create a comfortable home-office environment
  • Access our HQ in Edinburgh / workspaces around the UK with team off sites 
  • A collaborative, cross functional (pet friendly) environment working in small teams with autonomy enabling you to deliver meaningful and impactful work
  • We offer Vitality private health cover and other private health benefits
  • 34 days annual leave
  • 12 paid personal development days per year with additional personal training budget and resources allocated to help you learn and grow
  • 5% matched contribution, share options and company-wide bonus scheme
  • Enhanced modern family leave available to everyone

About Amiqus

Amiqus is a market leading, award winning compliance platform enabling simple, secure access to products and services online. Whether moving home, changing jobs or looking for professional help, we help make the process fast and easy for everyone involved.

We are recognised as one of the UK’s 50 fastest growing tech companies, as ranked by Deloitte Fast50 and part of Tech Nations Future Fifty cohort for 2024.We’re trusted by the Government, NHS and over 600 organisations across sectors in the UK to help people get to work on the things that matter, faster.

What’s important to us? investing in our people, platform and partners to grow an aspirational workplace and a profitable business at scale, creating impact and affecting systems level change, across sectors, borders and economies.

We’re currently around 65 people strong, working in cross functional teams spread across the UK. We expect to double in terms of our scale and impact over the coming twelve months so it’s an exciting time to join us and be a part of our growth.

About the role

This is an exciting role within Amiqus as we are expanding our Risk, Compliance and Security Team. This role is a vital part of ensuring our continued security, compliance and due diligence with our third party providers. You will have the freedom to bring your experience and skills to make the role your own, working alongside other compliance and security analysts and reporting into the Senior Risk and Compliance Manager. You will be responsible for assessing and managing the risks that Amiqus may face due to our interaction with third-parties, some of these interactions are key to our success as a business and therefore will be crucial to your role ensuring we are completing risk based through life due diligence and security checks whilst having business continuity plans in place. 

In addition, some of the key responsibilities will include:

  • Improving and managing our third-party security assessment procedure in response to supplier onboarding and through life contracts
  • Manage the Amiqus supplier tracker ensuring all information is up to date and regularly engage with and update supplier relationship owners throughout the contract lifecycle
  • Ensuring we are completing all required due diligence, audits and notifying when we are due to renew any third-party contracts
  • Evaluate third-party compliance with minimum security standards and documenting and monitoring any deviations or exceptions, highlighting any risk to the Senior Risk and Compliance Manager
  • Owning the day to day third-party risks to Amiqus, sitting as a member of the risk owners meeting and briefing on any new or changes to third-party risks
  • Identifying key third-party suppliers to Amiqus and setting in place risk based business continuity and disaster recovery plans where required
  • Where required, generate reports, KPIs and documentation to highlight third-party risks or concerns for senior management and leadership
  • Assist in the selection process for new suppliers and client risk assessments, security questionnaires and any external due diligence requirements.  
  • Develop and implement third-party and supplier risk management policies, procedures and industry best practices
  • Keeps up to date and communicates any regulatory and compliance related information or changes to enhance the third-party process
  • Driving compliance as a competitive advantage throughout the business, collaborating across functions where required to provide subject matter expertise with respect to Amiqus’ third-party risk management
  • Perform any other duties as required from the Senior Risk and Compliance Manager

About you

The key skills required to carry out this role:

  • Extensive experience in a similar third-party analyst role or similar compliance role within cyber or information security
  • A Risk related or Supply Chain business related professional qualification or relevant experience
  • Understanding of information security concepts and third-party risk management processes, methodologies and best practices
  • Previous experience or knowledge of ISO 27001, 9001, 28001 and Cyber Essentials
  • Previous experience conducting third-party risk assessments, gap analysis, audits and contract evaluations 
  • Demonstrate strong technical understanding, familiarity with risk assessment tools and methodologies
  • Strong interpersonal and communication skills, the ability to work independently and maintain a high quality of work
  • Ability to multitask and complete assignment within deadlines to deliver superior service to our clients and suppliers
  • Possess some relevant industry certifications is advantageous (CISM/CRISC/ISO Practitioner or Lead Implementer)  and/or a willingness to obtain/develop knowledge through our development benefits
  • Previous experience or knowledge of NIST frameworks and controls is beneficial 
  • Familiarity with our core business tools such as Slack, Notion and GDrive is advantageous but not essential

Talented people make Amiqus and staying true to our culture is important as we continue to develop and grow. Most importantly, this role will be filled by someone who shares the same values and work ethic as we do.

Our interview process

We think it’s important to have an open and transparent interview process so that you have a clear understanding of what to expect. The process might vary slightly depending on the role type or team you apply to join but it usually goes as follows:

  • Internal review of applications
  • An initial chat about the role with a member of our People and culture team
  • A more structured interview with the team manager and one other team member
  • An informal chat with some other team members about the opportunity OR a task based interview with clear direction given
  • Role offer
  • Onboarding welcome and process kick off with support across the team

Diverse perspectives and people of all backgrounds are welcome at Amiqus. We recognise that building an inclusive workplace requires proactivity and commitment. We acknowledge our moral and legal responsibilities to promote equal opportunities and pursue equality in all of our work.

If we can make preparations to make sure you have a positive interview experience, please let us know.

If this is you and the role sounds like something you would be interested in,  please contact [email protected] for a confidential discussion and attach an up-to-date CV / portfolio.

As you might expect, we care about privacy and we have a privacy policy specific for job applicants which explains how we handle your information and data.