Arqit is a global pioneer in post-quantum cryptography: we provide a proven defence against both current cyber dangers and impending quantum threats. Our global team describe Arqit as providing a positive, inclusive and high-performing working environment, where employees feel that managers care about the success and well-being of their teams, individuals feel valued as employees and teams achieve more than they thought possible, together.
We have brought together a world-leading team of pioneers in engineering and cryptography, and we now have an opportunity for a Head of Compliance to lead our compliance function. As a key member of the Operations team, you will ensure our company adheres to regulatory standards, industry best practices, and internal policies. This includes overseeing our SOX controls, ISO27001 certification, risk management framework, GDPR compliance, export controls, and internal auditing processes. You will play a crucial role in maintaining the integrity of our operations as we continue to grow and expand globally.
You will join our talented team, located conveniently close to Westminster, St James Park and Victoria stations, with considerable flexibility around working from home. As part of a dynamic, innovative team, you will make a significant impact by shaping and enhancing our compliance landscape. If you're passionate about compliance, risk management, and data protection, and want to contribute to a forward-thinking cybersecurity company, we'd love to hear from you!
What you will be doing
- ISO27001 Compliance & Internal Auditing:
- Lead and maintain ISO27001 certification, including internal audits, risk assessments, and continuous improvement initiatives
- Conduct regular internal audits, identify areas for improvement, and implement corrective actions
- Risk Management:
- Develop, implement, and manage the company's risk management framework
- Identify, assess, and mitigate compliance risks across all business functions
- Collaborate with leadership to align risk management practices with company objectives
- Data Protection & GDPR:
- Support the company's compliance with GDPR and other data privacy regulations
- Conduct data protection impact assessments (DPIAs) and ensure privacy by design and default across products and services
- Export Control:
- Work with the Legal department and VP Operations to create and maintain an effective framework to monitor compliance with export licenses
- Develop a robust system to maintain evidentiary documents and policies to support regulatory audits
- Work with Operations, Legal and Finance to create an effective program for KYC/B screening
- Regulatory Compliance & Governance:
- Work with relevant departments to ensure regular review and maintenance of company policies, procedures and training to ensure adherence to legal and regulatory requirements
- Prepare and present reports as necessary to senior management, the Board or Audit Committee
- SOX:
- Work with the Group Financial Controller to support the company’s compliance with SOX.
- Leading annual SOX risk assessments.
- Perform testing of the SOX controls on a quarterly and annual basis.
What we’re looking for
- Proven experience in a senior compliance role, ideally within a software, cybersecurity, or technology company
- In-depth knowledge of ISO27001, GDPR, SOX
- Experience conducting internal audits and managing risk frameworks
- Some knowledge and/or experience of export control regulations and licensing requirements, specifically as they may relate to cryptography or information security systems
- Strong understanding of UK, EU, US, and international regulatory environments as they apply to the business
- Exceptional communication and stakeholder management skills
- Relevant certifications such as CISM, CISSP, ISO27001 Lead Auditor/Implementer, or similar are highly desirable
- Ability to work independently while collaborating across departments
Please note, the ability to work in the UK without restrictions is ESSENTIAL; there may also be a need for UK security clearance in future
StudySmarter Expert Advice🤫
We think this is how you could land Head of Compliance in London
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like Arqit looking for candidates who are engaged and informed.
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at Arqit. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at Arqit
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with Arqit’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!
