Specialist in Regulatory Compliance supporting sustainability initiatives at FERI Group. Responsible for analysis, reporting, and development of sustainable finance products.
About the role
- Compliance Analyst managing ISO/IEC 27001 and SOC 2 compliance programmes at Luminance. Collaborating with Security, Procurement, and Legal teams to ensure robust compliance workflows.
Responsibilities
- Maintain and operate the ISO/IEC 27001:2022 ISMS.
- Support ongoing SOC 2 (Type II) and CMMC Level 1 compliance programmes.
- Manage compliance calendars, testing cycles, and control monitoring activities.
- Coordinate external audits (ISO surveillance/recertification, SOC 2, CMMC).
- Perform periodic control checks and collect, validate, and organise audit evidence.
- Track nonconformities, findings, and corrective actions through to closure.
- Escalate material control gaps or risks to the Information Security Manager.
- Define and operate a proportionate, tiered supplier due diligence model.
- Work with Procurement to ensure appropriate questionnaires and documentation are issued and completed.
- Perform contextual risk assessments and provide compliance sign-off.
- Partner with Legal where contractual or regulatory review is required.
- Formalise structured, repeatable compliance workflows that scale with business growth.
- Identify opportunities to reduce manual effort through automation or process improvement.
- Maintain and evolve the risk register and remediation tracking processes.
- Support awareness and training initiatives to improve organisational compliance maturity.
Requirements
- Demonstrable experience in information security compliance, IT audit, or Governance, Risk & Compliance (GRC).
- Working knowledge of ISO/IEC 27001:2022 and/or SOC 2 Trust Services Criteria.
- Experience supporting audits and managing evidence collection.
- Strong organisational, documentation, and stakeholder coordination skills.
- Ability to interpret regulatory and control requirements and translate them into practical business processes.
- Excellent written and verbal communication skills.
- **Desirable (but not essential)**
- ISO 27001 Internal Auditor certification.
- Experience in SaaS or cloud-based environments.
- Familiarity with CMMC and NIST SP 800 frameworks.
- Working knowledge of risk management frameworks (ISO 31000, NIST RMF, FAIR).
- Experience with GRC platforms (e.g., Drata, Vanta, Secureframe).
- Exposure to AWS security controls.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Export Control / Trade Compliance Officer ensuring customs compliance with Australian and U.S. laws. Advising on trade compliance issues and solutions across various projects and teams.
Graduate role in Internal Audit & GRC services at PwC, supporting organisations in regulatory compliance and risk management. Assisting with data analysis, process mapping, and client engagements.
Vice President of Compliance & Regulatory Affairs leading compliance strategy for Cotulla Education. Supporting growth and regulatory compliance across multiple institutions and campuses.
Compliance Officer with focus on AML and compliance tasks at Schulz & Cie. Consulting. Conducting audits, transaction monitoring, and managing regulatory issues in financial services.
Lead compliance and risk management at Thndr Securities Brokerage, ensuring regulatory adherence and overseeing compliance operations. Collaborate with teams to mitigate risks and educate on compliance programs.
Key contributor in Integrated Resource Planning at Duke Energy. Prepare executives for regulatory testimonies on future energy demands and regulatory compliance.
CMC Regulatory professional managing regulatory compliance activities for veterinary biological products at Zoetis. Supporting development and inspections for the new GMS Atlanta site with FDA and USDA expectations.
Compliance Associate supporting Fidelity's Asset Management Compliance operations through various responsibilities in financial services. Engaging in problem - solving and maintaining organizational compliance while collaborating with multiple departments.
CMC Regulatory professional at Zoetis preparing regulatory documentation and ensuring compliance with FDA and USDA regulations. Managing facility documents and participating in cross - functional project improvements.