Compliance Manager - Part Time in London

As the Compliance Manager, you'll lead our governance, risk and compliance efforts - working cross-functionally to maintain and strengthen our security certifications. You'll take ownership of key frameworks like SOC2 and ISO, as well as GDPR and related privacy requirements. This is a hands‐on, flexible, and fully remote part‐time role (3 days per week negotiable).

Key Responsibilities

• Maintain SOC2 Type II certification, ensuring ongoing compliance with evolving controls and requirements.
• Develop and lead the implementation roadmap for ISO27001 and ISO42001, from gap analysis to successful certification.
• Define, update and enforce security, data protection, and compliance policies across the business.
• Work directly with teams to design and embed practical, scalable controls aligned to business processes.
• Oversee compliance with data protection laws, including UK & EU GDPR and relevant US privacy frameworks (e.g., CCPA).
• Support the review and negotiation of Data Processing Agreements (DPAs) within customer legal contracts.
• Track and manage evidence collection, audits, and corrective actions using GRC platforms such as Vanta, Drata or SureCloud.
• Monitor compliance risks, escalating issues and advising on remediation strategies.
• Lead vendor risk assessments and ensure third‐party compliance obligations are met.
• Own internal audit processes, documentation, and cross‐functional training to support a culture of continuous compliance.

What You'll Bring (Skills, Experience & Mindset)

• Proven experience managing governance, risk and compliance (GRC) programs in a technology‐led business.
• Deep understanding of SOC2 and ISO27001; experience leading successful audits or certification processes.
• Strong knowledge of data protection regulations, including UK/EU GDPR and US equivalents (e.g., CCPA).
• Experience reviewing and supporting legal contract terms, particularly Data Processing Agreements (DPAs).
• Comfortable working independently and hands‐on - drafting policies, interpreting frameworks, and engaging directly with teams.
• Experience with compliance automation tools (e.g., Vanta, Drata, SureCloud).
• Clear, confident communicator who builds strong working relationships across technical and non‐technical teams.
• Organised, detail‐oriented and pragmatic - able to balance compliance requirements with business realities.
• Flexible mindset; thrives in part‐time and asynchronous work environments.

Benefits

• Pension Scheme: Auto‐enrolled after 3 months' service, 5% employee contribution, matched by 5% from Amplience.
• Annual Leave: 25 days paid holiday as standard pro rata.
• Enhanced Maternity Leave: 12 weeks full pay, 12 weeks at 50% pay, 15 weeks at statutory maternity pay (SMP), 13 weeks unpaid.
• Enhanced Paternity Leave: 2 weeks full pay.
• Sick Pay: Up to one month's full pay per calendar year (at company discretion, with medical certificate).
• Study Leave: 5 days for employees on accredited long‐term courses (12+ months).
• Birthday Leave: One paid day off during your birthday month.
• Company‐Wide Recharge Days: One day off per quarter for the whole business – rest, recharge, and reset.
• Holiday Buy Scheme: Purchase up to 5 extra days per year, repaid through salary deductions.
• Cycle to Work Scheme: Save on bikes & accessories via tax‐efficient payments.
• Tech Scheme: Purchase tech items and spread the cost over 12 months via salary deduction.
• Season Ticket Loan: Advance loans available for travel tickets, repaid via payroll.
• Charity/Volunteer Days: Up to 3 paid days a year for volunteering or charity work.
• Payroll Giving: Tax‐free donations to UK charities, directly from your salary.
• Eyecare: Reimbursement for a standard eye exam every two years.
• Employee Referral Bonus: £1,200 / €1,400 / $1,500.