Who are Fenergo
Fenergo exists for one reason and that is to better enable financial institutions to onboard and service their customers digitally, safely, and compliantly. One very simple reason for being. And there are 850 of us at Fenergo who wake up every day thinking about how to improve the customer onboarding experience through technology. And we are the best in the world at it. Which is why we count 32 of the top 50 financial institutions amongst our customers. It is also why we are consistently ranked as #1 in Customer Lifecycle Management and why we count some of the world’s top companies as our technology partners, Salesforce, IBM, PWC, Accenture, DXC to name but a few. French and UK private equity firms have recently acquired a majority stake in Fenergo, valuing the business at over $1bn, and are looking to scale the business globally. Headquartered in Dublin, Ireland, Fenergo has offices in North America (Boston, New York and Toronto), UK (London), Spain (Madrid), Poland (Wroclaw), Asia Pacific (Sydney, Melbourne, Singapore, Hong Kong and Tokyo) and UAE (Dubai).
Opportunity
As Compliance Manager your role will be implementing and designing reliable compliance and practices for internal and external use. You will be setting up and verifying the governance structure, control, execution of assurance, and reporting findings to management. The Role reports to the Director of Cloud Security.
Within Fenergo, the Trust amp; Security team is growing to meet the changing requirements of customers, frameworks, and regulations. Joining the team means exhibiting a balance between your existing knowledge and ability to spot programs that others don’t and being a flexible team player who is thrilled by complex environments and challenges.
Key responsibilities
· Point of contact within the organisation and external auditors (Certification amp; Accreditation Bodies and Customers) for all matters relating to compliance, assurance, and security related GRC matters.
· Being the lead in executing roadmap tasks to maintain existing certifications and client commitments:
- ISO27001:2013:
- Transition to ISO27001:2022.
- Integrate two existing audit programs post-merger.
- SOC 2 Type II:
- Maintain existing program to attestation for in-scope products.
- Client Audits
- Develop and execute a roadmap for client audits.
- Other Programs and Projects:
- Security Education Training and Awareness
- GRC Information Security Risk Champion.
- Information Security Policy Management
- ISO27701
- Create and align roadmap to OKRs
· Translating change in regulations, frameworks, policies, and processes to the organisation.
· Performing information security risk analyses.
· Managing 3rd party vendors regarding auditing services such as internal and external audit
· Responding to ad-hoc tasks and requests from the business and customers on compliance and assurance.
· Developing, and promoting continuous improvement of, quality control processes within the organisation.
· Manage the existing compliance team of 2 people:
- Assign and manage workloads.
- Career progression.
Requirements
· Deep knowledge and experience of compliance management in a scale-up/SaaS environment.
· Several years’ experience leading audit programmes on behalf of an global international, multi-product, sales led organisation.
· Strong customer assurance experience proactive management of client audits and other compliance related activities.
· Experience navigating complex work environments.
· Excellent stakeholder management skills.
· Ability to cut through complexity and provide clear recommendations/improvements.
· Passionate about empiricism, helping teams improve through experimentation and observation.
About you:
· Great sense of empathy which allows you to make user-centric decisions.
· Self-motivated and able to define your own roadmap and workload, and report accordingly.
· Advisor mindset able to separate when to take accountability or responsibility or when to provide consultation or information.
Benefits
· Competitive Salary
· Performance Bonus
· Flexible Working
· Comprehensive Healthcare
· Pension
· Life Assurance
· Sports and Social Club
· Regular Onsite and Team Events
· Office Set Up Allowance
· Company Days