Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead compliance and information security initiatives in a fast-growing tech company.
- Company: Join Sona, an innovative AI-native workforce management platform making a real impact.
- Benefits: Enjoy 35 days annual leave, matched pension contributions, and a home office budget.
- Why this job: Be the first full-time compliance hire and shape our compliance programme from the ground up.
- Qualifications: 5+ years in information security or compliance, with hands-on experience in certifications.
- Other info: Work remotely with occasional travel to our vibrant London office.
The predicted salary is between 48000 - 72000 £ per year.
3 billion people across the world work in frontline jobs. Yet, despite rising costs and staff shortages, frontline organisations are still left to choose between paper, Excel, and WhatsApp, or decade-old workforce management solutions to take care of the most important part of their businesses - their people.
Enter Sona: the next generation of AI-native, frontline workforce management. We’ve built an end-to-end platform covering Scheduling, HR, Payroll, and Communications that gives the largest frontline organisations everything they need to staff more intelligently and empower their teams.
In 4 years, we’ve already made a deep impact on the lives of over 100k frontline workers and the operation of their organisations, grown the team to 120+, and secured over $50M in funding from notable VC’s, including Felicis, Northzone, Gradient Ventures (Google), SpeedInvest, Antler, and Notion Capital, plus notable angels like Tom Blomfield (Monzo).
It’s a hugely exciting time to be joining the team as we’re still small enough that you’ll have a significant impact on the company’s growth trajectory and culture, yet large enough to have a great structure, experienced leaders and world-class benefits in place.
About The Role
As we scale across the UK and US, we’re looking for a hands-on Compliance Manager with a strong information security background to own and evolve our security and compliance foundations. This role is InfoSec-led, with ISO 27001 as an immediate priority and SOC 2 likely in the medium term. You’ll work closely with Product, Engineering, Legal and Leadership to translate compliance requirements into practical, working systems that support growth rather than slow it down.
As this is our first full-time compliance hire, it is a fantastic opportunity to fully own and craft a robust, scalable compliance programme in a fast-growing software business. If this idea sounds exciting - we want to hear from you!
This role will sit in our Legal & Compliance function, reporting into our General Counsel. We are happy to consider candidates based anywhere in the UK, if you are happy with some occasional travel to our London office (Soho).
Responsibilities
- Own and lead information security across the business, including policies, controls and risk management
- Lead external certifications and audits (e.g. ISO 27001, GDPR, SOC 2, Cyber Essentials)
- Work cross-functionally to advise teams on risk and data security, supporting them with use of new tools and AI adoption
- Translate security and compliance requirements into concrete systems, tools and processes
- Own or lead implementation of technical controls (e.g. access management, logging, monitoring, incident response, device management)
- Act as the point of contact for RFPs, customer security reviews, questionnaires and audits
- Support and develop AML compliance, extending depth over time where needed
Requirements
- 5+ years’ experience in information security, compliance or closely related roles
- Hands-on experience leading or materially contributing to external certificates (e.g. ISO 27001, GDPR, SOC 2, Cyber Essentials)
- Experience in a SaaS or technology environment, ideally a startup or scale-up
- Strong understanding of security controls and how to implement them in practice (not just on paper)
- Experience working directly with tools, vendors and configurations (not purely advisory)
- A pragmatic, risk-based mindset with the ability to push back clearly and constructively
Nice to have
- Exposure to US customers or US compliance expectations
- Familiarity with AML or adjacent compliance areas, with willingness to deepen expertise
Benefits
- Share options
- 35 days annual leave (25 days standard plus 10 flexible public holiday days)
- Extra day of leave for every year of service
- Pension contributions matched up to 5%
- Enhanced parental leave & pay
- Co-working space stipend for those based outside London
- Annual all expenses paid team retreats
- The latest Macbook and equipment budget for your home office
- Unlimited free books
Note: this represents a typical benefits package for a UK-based, full-time employee. Exact details may vary based on location and employment type but we try to be as fair as possible to all of our team members. Please ask your contact in the Talent team to clarify the available benefits for you.
Compliance Manager in City of Westminster employer: Sona (getsona.com)
Contact Detail:
Sona (getsona.com) Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Compliance Manager in City of Westminster
✨Tip Number 1
Network like a pro! Reach out to people in the industry, attend events, and connect on LinkedIn. We all know that sometimes it’s not just what you know, but who you know that can help you land that Compliance Manager role.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. We want to see how you can fit into our team at Sona, so think about how your experience aligns with our mission of empowering frontline workers.
✨Tip Number 3
Showcase your hands-on experience! When discussing your background, highlight specific projects where you’ve led compliance initiatives or implemented security controls. We love seeing practical examples that demonstrate your skills.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we’re always looking for passionate candidates who are excited about making an impact.
We think you need these skills to ace Compliance Manager in City of Westminster
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Compliance Manager role. Highlight your experience in information security and compliance, especially any hands-on work with ISO 27001 or SOC 2. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're excited about joining Sona and how you can contribute to our compliance programme. Be genuine and let your personality come through – we love that!
Showcase Your Achievements: Don’t just list your responsibilities; showcase your achievements in previous roles. Did you lead a successful audit or implement a new compliance system? We want to hear about it! Numbers and specific examples can really make your application stand out.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you’re serious about joining our team at Sona!
How to prepare for a job interview at Sona (getsona.com)
✨Know Your Compliance Stuff
Make sure you brush up on ISO 27001, SOC 2, and GDPR before the interview. Be ready to discuss how you've implemented these standards in past roles, as this will show your hands-on experience and understanding of compliance in a tech environment.
✨Show Your Cross-Functional Skills
Since this role involves working closely with Product, Engineering, and Legal teams, prepare examples of how you've successfully collaborated across departments. Highlight any specific projects where you translated compliance requirements into practical solutions.
✨Demonstrate a Pragmatic Mindset
Be prepared to discuss how you approach risk management and compliance challenges. Share instances where you've had to push back on decisions or suggest alternative solutions that align with compliance while supporting business growth.
✨Ask Insightful Questions
At the end of the interview, ask questions that show your interest in the company's culture and growth trajectory. Inquire about their current compliance challenges or how they envision the compliance programme evolving as they scale. This shows you're thinking ahead and are genuinely interested in contributing to their success.
