Compliance Manager

Location: Remote

Salary: £65,000 - £75,000

About us

At Arbor, we’re on a mission to transform the way schools work for the better.

You’ve probably seen the headlines. Heavy workloads, constant change, admin pressure on teachers and staff at every level… sometimes it feels like this is just part and parcel of school life today. But it doesn’t have to be this way.

We passionately believe that there’s a better way to work. And it starts by giving everyone the right tools and technology for the job.

We’re building a platform and products we believe in - as well as a strong, diverse team of experienced specialists, ex-teachers and Edtech engineers passionate about making a difference to the sector.

Ultimately, we’re here to help make our schools and trusts stress a little less, and focus on what matters most - improving the lives of teachers and outcomes of students everywhere.

About the role

We are seeking a highly skilled and experienced Compliance Manager to join our team, working to ensure customer data protection and regulatory compliance across our SaaS based products. The remit and focus of the role is to take responsibility for creation and maintenance of InfoSec related policies, as well as ensuring adherence to policies across the company. It’s a broad and exciting role, so we’re looking for someone up for a challenge - if you’re a detail oriented and a process driven candidate, this is the role for you.

Core responsibilities

• Lead internal and external audits related to ISO27001, ISO9001, PCI-DSS, and Cyber Essentials Plus.

• Develop, implement, and manage the Information Security Management System (ISMS) in accordance with ISO27001 standards.

• Report to senior management on compliance status and recommend improvements or corrective actions as needed.

• Work with DevSecOps and platform leads to ensure platform level security is compliant and mature

• Work with Product Managers and Engineers to identify and remediate security weaknesses in the product, and platform infrastructure

• Work with Group Legal counsel and CRO to ensure our licenses and agreements are adequate and fit for purpose

• Own and operate the Compliance Operating Model, including running the security working groups, steering groups, and the management committee

• Capture continuous improvement tasks and work with the business to complete them

• Set OKR’s for security annually that ensure continued improvements in Information Security

• Monitor changes in compliance regulations and update internal policies and practices accordingly.

• Conduct regular training sessions for staff to ensure awareness and understanding of compliance policies and procedures.

• Assist in security incident response and resolution, and subsequent post-mortems and retrospectives

• Participate in tech-talks and team based learning to ensure knowledge is spread

• Serve as the primary point of contact for all matters related to information security compliance.

About you
We’re looking for an experienced Compliance Manager, who is capable of working with stakeholders from across the business. Beyond that, we’d love to see:

• Experience in a compliance or information security management role, with a strong understanding of ISO27001, ISO9001, PCI-DSS, and Cyber Essentials Plus frameworks.

• Proven track record of managing information security systems and compliance programs.

• Excellent leadership and team management skills.

• Strong analytical, organisational, and decision-making abilities.

• Excellent communication skills, both written and verbal.

• Ability to work independently and manage multiple priorities in a fast-paced environment.

• Experience with SecureFrame, or other security tooling would be a bonus

What we offer

The chance to work alongside a team of hard-working, passionate people in a role where you’ll see the impact of your work everyday. We also offer:

• A dedicated wellbeing team who champion initiatives such as mindfulness, lunch n learns, manager training, mental health first aid training and much more!

• 32 days holiday (plus Bank Holidays). This is made up of 25 days annual leave plus 7 extra company wide days given over Easter, Summer & Christmas

• Enhanced maternity and adoption leave (20 weeks full pay) and paternity (6 weeks full pay) pay

• 5 free return to work maternity coaching sessions, helping you adapt to this new exciting time of life!

• Access to services such as Calm, Bippit (financial wellbeing coaching) and Health Assured (Employee assistance programme)

• All of our roles champion flexible working and we are happy to discuss what this means to you!

• Social committees that plan team, office and company wide events to bring people together and celebrate success

• Dedicated professional development training budget (CPD courses, upskilling resources, professional memberships etc)

• Volunteer with a charity of your choice for a day each year

• Dog friendly offices!

Interview process

1. Phone screen

2. 1st stage

3. 2nd stage

We are committed to a fair and comfortable recruitment process, so if you require any reasonable adjustments during your application or interview process, please reach out to a member of the team at careers@arbor-education.com.

Our commitment is also backed by our partnership with Neurodiversity Consultancy, Lexxic who provide us with training, support and advice.

Arbor Education is an equal opportunities organisation

Our goal is for Arbor to be a workplace which represents, celebrates and supports people from all backgrounds, and which gives them the tools they need to thrive - whatever their ambitions may be so we support and promote diversity and equality, and actively encourage applications from people of all backgrounds.

Refer a friend: Know someone else who would be good for this role? You can refer a friend, family member or colleague, if they are offered a role with Arbor, we will say thank you with a voucher valued up to £200! Simply email: careers@arbor-education.com

Please note: We are unable to provide visa sponsorship at this time.