The Role
As Teneo's Cybersecurity Compliance Manager, you will be responsible for leading the firm’s efforts to achieve and maintain compliance with key information security standards and regulations, with an initial focus on ISO 27001 certification. Reporting to the Global Head of Information Security, you will work closely with the information security team, senior leadership, and cross-functional stakeholders to develop and execute a compliance roadmap aligned with Teneo's business objectives.
Your primary responsibility will be to guide Teneo through the ISO 27001 certification process, including conducting gap assessments, implementing necessary controls and process improvements, and preparing for the certification audit. Following the successful completion of ISO 27001, you will lead future compliance initiatives such as SOC 2 renewal and Cyber Essentials Plus.
As the Cybersecurity Compliance Manager, you will have a deep understanding of information security standards, frameworks, and best practices. You will establish policies, procedures, and controls to ensure Teneo maintains compliance with applicable standards and regulations. You will also be responsible for managing compliance-related risks, monitoring the compliance posture, and reporting on the status of compliance efforts to senior leadership.
In summary, the Cybersecurity Compliance Manager will play a crucial role in ensuring Teneo achieves and maintains compliance with key information security standards, starting with ISO 27001. This position requires a unique blend of technical knowledge, project management skills, and the ability to collaborate effectively with a diverse range of stakeholders.
Key Responsibilities
- Lead Teneo's efforts to achieve ISO 27001 certification, including gap assessments, control implementation, and audit preparation
- Develop and execute a compliance roadmap for future initiatives such as SOC 2 renewal and Cyber Essentials Plus
- Establish and maintain policies, procedures, and controls to ensure ongoing compliance with applicable information security standards and regulations
- Work closely with the information security team to implement technical controls and solutions to meet compliance requirements
- Conduct risk assessments and manage compliance-related risks
- Monitor the organisation's compliance posture and conduct regular internal audits
- Coordinate with external auditors during certification and surveillance audits
- Provide training and guidance to employees on compliance requirements and their responsibilities
- Report on the status of compliance efforts to senior leadership and key stakeholders
- Stay up to date with changes in information security standards and regulations and adjust the compliance program accordingly
Key Skills & Experience
- 3-5 years of experience in information security compliance roles
- Deep knowledge of ISO 27001, SOC 2, Cyber Essentials Plus, and other relevant information security standards and frameworks
- Experience leading an organisation through ISO 27001 certification
- Understanding of risk management principles and experience conducting risk assessments
- Knowledge of information security technologies and controls
- Excellent project management skills and ability to lead cross-functional initiatives
- Strong communication and stakeholder management skills
- Ability to translate complex compliance requirements into actionable plans
- Relevant certifications such as CISA, CISM, CISSP, or ISO 27001 Lead Auditor are highly desirable
- Degree in information technology, cybersecurity, or a related field, or equivalent experience
What can we offer you?
New joiners are supported by a week-long induction programme, and continuous improvement is achieved through a structured and tailored programme that suits your career development.
As well as this we offer a whole host of benefits and reward including.
- Competitive Salary
- 28 days holiday
- Discretionary Bonus Scheme
- Company Pension Scheme
- Extensive investment in personal development & learning
- Enhanced maternity and paternity leave (depending on length of service) and shared parental leave
- Group Income protection
- Life assurance
- Cycle to work schemes
- Regular social, cultural and charitable activities
About Teneo
Teneo is the global CEO advisory firm. We partner with our clients globally to do great things for a better future.
Drawing upon our global team and expansive network of senior advisors, we provide advisory services across our five business segments on a stand-alone or fully integrated basis to help our clients solve complex business challenges. Our clients include a significant number of the Fortune 100 and FTSE 100, as well as other corporations, financial institutions, and organizations.
Our full range of advisory services includes strategic communications, investor relations, financial transactions and restructuring, management consulting, physical and cyber risk, organizational design, board and executive search, geopolitics and government affairs, corporate governance, ESG and DE&I.
The firm has more than 1,500 employees located in 40+ offices around the world.
