At a Glance
- Tasks: Drive security and compliance initiatives while ensuring our organisation remains secure and resilient.
- Company: Join a pioneering joint venture at the forefront of AI and industry transformation.
- Benefits: Professional growth, continuous learning, and a collaborative team environment.
- Other info: Dynamic role with opportunities to work on cutting-edge AI projects.
- Why this job: Make a real impact in security and compliance within an innovative tech landscape.
- Qualifications: Experience in security engineering and strong understanding of compliance frameworks.
The predicted salary is between 36000 - 60000 £ per year.
Complexio is Foundational AI, working to automate business activities by ingesting whole company data – both structured and unstructured – and making sense of it. We are looking for a Security & Compliance Specialist to own and drive our security and compliance requirements. This role is hands-on and strategic, balancing day-to-day operations with long-term initiatives to ensure our organisation remains secure, resilient, and compliant. You will work closely with engineering, product, and leadership teams to embed security into everything we do, while also representing our security and compliance posture to customers, partners, and auditors.
Requirements
- Security Governance & Compliance
- Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness).
- Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements.
- Drive security and compliance initiatives across business functions, engaging senior stakeholders.
- Monitor changes in relevant compliance frameworks (e.g., CIS Benchmarks, EU AI Act, GDPR) and adapt processes accordingly.
- Operational Security
- Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness.
- Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM).
- Work hands-on to perform internal security assessments or penetration testing.
- Manage relationships with external pentest providers, auditors, and assessors.
- Secure Development Lifecycle (SDLC)
- Partner with engineering teams to embed security in the SDLC and DevSecOps practices.
- Advise and guide on secure coding practices, threat modeling, and architectural reviews.
- Instrument automated tooling for CI/CD pipelines to improve visibility of security signals and enforcement.
- Customer & External Engagement
- Represent the company's security, privacy, and data protection posture in customer and partner discussions.
- Provide clear and confident explanations of controls, certifications, and processes during due diligence.
- Contribute to security documentation for customer-facing materials.
- Risk Management & Strategy
- Perform regular risk assessments and maintain the company's risk register.
- Translate technical risks into business context to enable leadership decisions.
- Proactively identify emerging security and compliance risks (including AI-related risks) and propose mitigation strategies.
Qualifications
- Proven experience in a security engineering, compliance, or security leadership role.
- Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act).
- Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening.
- Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure/AWS/GCP).
- Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences.
- Experience working with auditors, external assessors, and customer security teams.
Nice-to-Have
- Prior experience building security functions in a fast-growing SaaS or AI/ML-driven company.
- Knowledge of AI-specific compliance and risk frameworks (NIST AI RMF, EU AI Act).
Benefits
- Join a pioneering joint venture at the intersection of AI and industry transformation.
- Work with a diverse and collaborative team of experts from various disciplines.
- Opportunity for professional growth and continuous learning in a dynamic field.
Security & Compliance Specialist in Warrington employer: Complexio
At Complexio, we pride ourselves on being a forward-thinking employer that champions innovation and collaboration in the rapidly evolving field of AI. Our work culture fosters diversity and teamwork, providing employees with ample opportunities for professional growth and continuous learning. As a Security & Compliance Specialist, you will play a pivotal role in shaping our security landscape while enjoying the benefits of working within a pioneering joint venture that values your contributions and supports your career development.
StudySmarter Expert Advice🤫
We think this is how you could land Security & Compliance Specialist in Warrington
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by researching the company and its security practices. Be ready to discuss how your skills align with their needs, especially around ISO 27001 and compliance frameworks. Show them you’re not just a fit, but the perfect fit!
✨Tip Number 3
Don’t forget to showcase your hands-on experience! Whether it’s vulnerability management or incident response, be prepared to share specific examples of how you’ve tackled security challenges in the past.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Security & Compliance Specialist in Warrington
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security & Compliance Specialist role. Highlight your relevant experience with security frameworks like ISO 27001 and any hands-on skills you have in penetration testing or compliance management.
Craft a Compelling Cover Letter:Your cover letter should tell us why you're the perfect fit for this role. Share specific examples of how you've driven security initiatives in the past and how you can contribute to our mission at Complexio.
Showcase Your Communication Skills:Since you'll be working with both technical and non-technical teams, it's crucial to demonstrate your ability to communicate complex security concepts clearly. Use your application to show us how you can bridge that gap.
Apply Through Our Website:We encourage you to apply directly through our website. This way, we can ensure your application gets the attention it deserves and you can easily keep track of your application status!
How to prepare for a job interview at Complexio
✨Know Your Security Standards
Make sure you’re well-versed in security standards like ISO 27001, SOC 2, and GDPR. Brush up on how these frameworks apply to the role and be ready to discuss how you've implemented or adhered to them in past positions.
✨Showcase Your Hands-On Experience
This role is hands-on, so be prepared to share specific examples of your technical skills, such as penetration testing or vulnerability management. Highlight any tools you've used and how they contributed to your previous organisations' security posture.
✨Communicate Clearly
You’ll need to explain complex security concepts to both technical and non-technical audiences. Practice articulating your thoughts clearly and confidently, especially when discussing security controls and compliance processes.
✨Engage with Real Scenarios
Prepare for situational questions that may involve risk assessments or incident response scenarios. Think through how you would approach these situations and be ready to discuss your thought process and decision-making.
