Regulatory Affairs Associate for managing new drug registrations and preparing documentation in the India Market. Collaborating with stakeholders and supporting compliance in bulk drug registration.
About the role
- Risk & Compliance Lead responsible for designing and implementing risk compliance frameworks for a SaaS company. Collaborating with cross-functional teams to mitigate operational and regulatory risks.
Responsibilities
- Own Elliptic’s Risk and Compliance strategy, frameworks, and annual plan
- Maintain risk taxonomy, registers, and assessment cadence across business, product, data, third‑party, and operational risks
- Facilitate risk identification with domain owners, evaluate inherent/residual risk, and drive treatment plans
- Identify applicable obligations and industry standards for a SaaS provider and maintain a single control framework mapped to them
- Plan and run a risk‑based assurance programme to test control design and effectiveness
- Partner with Platform, SRE, and Security to validate backup, recovery, continuity, and disaster recovery capabilities
- Set methodology and thresholds for vendor and product risk, partnering with Procurement, Legal, and Product to embed controls in lifecycle workflows
- Coordinate external audits and certifications as needed; ensure our evidence strategy is efficient and reusable
- Enable teams through guidance, training, and practical tooling; make compliance easy and transparent
Requirements
- Proven ownership of an ERMF or equivalent risk programme in a SaaS or technology business
- Designing and operating a unified control framework mapped to multiple obligations or standards
- Knowledge of data protection and data governance practices relevant to SaaS
- Planning and executing risk‑based assurance and control testing, and managing CAPA to closure
- Partnering with engineering and product teams to embed quality and compliance controls into their operations
- Clear, concise written communication and executive risk reporting
- Strong stakeholder management across technical and non‑technical teams
- Nice to have
- Experience with ISO 27001, SOC 2, or similar certifications, and familiarity with ISO 9001/22301/14001 as contributing inputs
- Exposure to model risk governance or validation practices
- Experience with evidence automation or compliance tooling
Benefits
- Hybrid working and the option to work from almost anywhere for up to 90 days per year
- £500 Remote working budget to set up your home office space
- $1,000 Learning & Development budget to use on anything (agreed with your manager) that contributes to your growth and development
- Holidays: 25 days of annual leave + bank holidays
- An extra day for your birthday
- Enhanced parental leave: we provide eligible employees, regardless of gender or whether they become a parent by birth or adoption, 16 weeks fully-paid leave
- Private Health Insurance - we use Vitality!
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Senior Tech Compliance Analyst at Syneos Health responsible for global Technology Disaster Recovery efforts, collaborating with various teams and service providers.
BL
Chief Nuclear Officer serving as the nuclear safety authority for BaRupOn's SMR/MMR programs. Establishing safety frameworks and ensuring regulatory compliance within the organization.
International Trade Compliance Manager overseeing compliance with international trade regulations at Northrop Grumman. Leading a team and managing compliance initiatives across multiple locations in the US.
Compliance Manager leading Autodesk's Enterprise Compliance program. Ensuring compliance with SOX, PCI regulations and overseeing security controls across teams.
Compliance Student supporting compliance and risk management activities for individual insurance at iA Financial Group. Involves monitoring processes, collaborating with teams, and assisting with compliance tasks.
Nurse Licensure & Compliance Coordinator managing multi - state nurse licensure and compliance inquiries while ensuring a positive nurse experience. Advocating for nurses and maintaining regulatory adherence at the organization.
508 Compliance Specialist working with the Office of the Inspector General for the DoD. Responsible for ensuring electronic accessibility for compliance with Section 508 regulations.
Senior Manager in Regulatory Affairs overseeing submission management and regulatory compliance. Leading cross - functional teams in a neuroscience - focused biopharmaceutical environment.
Local Compliance & Ethics Officer at Teva Germany serving local management and compliance program. Leading compliance initiatives and collaborating with various stakeholders while managing risks and providing guidance.