Governance, Risk
2 months ago
Job Title: Governance, Risk & Compliance Director
Team: CKG EMEACA
Responsible for:
Responsible to: EMEACA Managing Director & CKG Head of Infrastructure
Company Overview:
The Constellation Kidney Group is the global leader in dialysis care software and technology services. Clinical Computing, along with Mediqal Health Informatics., its sister company in the UK, and Constellation Kidney Group (Canada), are all members of the Constellation Kidney Group. Clinical Computing, Mediqal Health Informatics and Constellation Kidney Group (Canada) all provide Electronic Medical Record (EMR) solutions called Clinical Vision, eMed Renal, and Renal Insight, respectively. These are designed specifically for the renal market and the management of clinical records for CKD, ESRD and transplant patients. Clinical Computing and Constellation Kidney Group (Canada are ISO 13485 Medical Device certified organizations. These companies operate in the UK, EU, Canada, Australia, New Zealand and the USA.
Job Overview:
We seek an information security and compliance leader to achieve our company’s data security and compliance objectives. This work encompasses the management of security controls (ISO 27001 and SOC 2) our QMS ISO 13485 contract assessments, and enterprise best practices. This unique opportunity is perfect for individuals who want to build on their cyber security and governance experience, are passionate about compliance, and want to make an impact in the company. You will direct, manage, and provide leadership for the organization’s information security and compliance program. This includes developing, implementing, and maintaining an information security and quality management program that meets or exceeds the requirements of industry regulations, standards, policies, and legal requirements.
Salary will be dependent on experience and qualifications.
This role requires attendance at a meeting in London monthly on an ad hoc basis.
International travel will be required.
This is a UK based role, therefore, you must be a resident in the UK.
Key Responsibilities:
ISO 13485 Quality Management System (QMS)
- Act as management representative, maintaining compliance with ISO 13485, including responsibility for successful internal and external audits.
- Ensure QMS processes are defined, documented, implemented, and maintained.
- Maintain the integrity of the QMS when changes are planned and implemented.
- Report to top management on the effectiveness of the QMS and any need for improvement.
- Ensure the promotion and awareness of regulatory and QMS requirements throughout the organization.
- Also act as a regulatory correspondent and document controller.
- Complete significant change reviews.
Information Security Management System (ISO 27001)
- Act as information security manager, responsible for the processes, documentation, practices, and certification of ISO27001, including the management of internal and external audits across our markets.
Overall responsibility for all compliance and information security matters, including routine items such as the NHS DSPT Toolkit and completing ad-hoc customer questionnaires as required.
Lead yearly certification of Cyber Essentials and Cyber Essentials Plus
Act as privacy officer for the region, develop, implement, and oversee compliance with privacy legislation, including handling challenges or complaints.
Other duties as assigned
Develops, maintains, and communicates the organization’s information security policy and procedures
Evaluate new or updated industry regulations to ensure continued compliance
Enforces information security controls and investigates/responds to information security incidents
Reporting on the performance of the information security management system to top management
SOC 2 compliance for CKG USA. Initially, start with SOC 2 Type I and then complete SOC 2 Type II
Incident response planning and testing
Disaster recovery planning and testing
Responsible for network and application penetration testing
Maintain security and compliance metrics
Maintain and manage our information security and compliance tool Vanta.
Other duties as assigned
Qualifications Required:
Essential
- A bachelor’s degree or equivalent qualification in information security, computer science, or related field.
- Are you well-versed in industry regulations and can translate complex security concepts into layman’s terms.
- Certifications (preferred): CISSP, CISM, CRISC, CISA, CEH
- Experience Required
Essential
- ISO 27001
- SOC 2
- Detail-oriented with the ability to see the “big picture”
- Thorough knowledge of information security and compliance concepts
- Working knowledge of industry-leading information security tools and technologies
- Ability to work independently and manage multiple priorities simultaneously
Desirable
- In-depth knowledge of at least one major regulatory framework (e.g. HIPAA, SOC 2, ISO 27001, etc.)
- Certifications in information security or compliance (CISSP, CISM, CRISC, CISA, CEH)
- Experience leading security teams for financial, retail, healthcare, small business, education, etc.
- Interest in emerging technologies related to information security and compliance
What You Can Expect From Us
- 25 days’ annual leave (increasing with length of service) plus bank holidays
- Company profit share bonus scheme
- Annual salary reviews, based on individual performance
- Professional Development by e-learning, and contribution to course with accredited certification
- Enhanced Maternity and Paternity pay
- Access to our retail discounts platform
- Employee Assistance Programme with 24/7 support
- Private Medical Insurance
- Health Cash Plan
- Company Sick Pay
- Purchase Holiday Scheme
- Group Pension Scheme with salary sacrifice
- Life Assurance
- Refer a Friend scheme
- Cycle to Work scheme
Diversity within the workplace
At CCL / MHI we are pleased to say we create a diverse and inclusive work environment. We are an equal opportunity employer, and we actively encourage all individuals to express themselves and to achieve their full potential.
As a company, we continuously strive to outreach to individuals of all backgrounds and identities. We do not discriminate against applicants based on gender identity, race, national and ethnic origin, religion, pregnancy, age, sexual orientation, and/or mental or physical disabilities.
If you have a disability, such as dyslexia or a medical condition which you believe may affect your performance during any aspect of our selection process, we will be happy to make reasonable adjustments to enable you to complete the process to your best ability.
By prioritising employee wellbeing, experience, recognition, and development, we are instrumental in attracting, nurturing, and retaining top talent that contributes to CCL & MHI's and Canada's success and growth. Apply now to be part of a team that offers career development opportunities and highly values innovation, creativity, responsiveness, and excellence.
-
Performance & Governance Lead
4 weeks ago
England, United Kingdom Places for People Full timeThat's someone that does the right thing, is enthusiastic and motivated to grow, believes in Community spirit, is respectful and enjoys their work. As the UK's leading Social Enterprise we're dedicated to creating inclusive and thriving Communities for both our Customers and Employees. Join a community that cares about you! Your key...
-
Performance Governance Lead
4 weeks ago
England, United Kingdom Places for People Full timeAt Places for People, we hire People, not numbers! So, if you like the sound of one of our jobs, please apply - you could be just who we're looking for! Of course, experience and track record are important, but we're more interested in hiring someone that embodies our People Promises. That's someone that does the right thing, is enthusiastic and...
-
Risk Management and Governance Lawyer
2 weeks ago
South West England, United Kingdom LHH Recruitment Full timeJob Summary:We are seeking a Risk Management and Governance Lawyer to join our team in Bristol, UK.As a Risk Management and Governance Lawyer, you will be responsible for reviewing and updating policy documents, collaborating with colleagues across different office locations, and providing advice on regulatory compliance.Key Responsibilities:Review and...
-
Governance Assistant manager
3 weeks ago
England, United Kingdom KPMG UK Full timeAssistant Governance Manager Base Location: Watford, Reading, Bristol, Milton Keynes – with travel to the London office when required The KPMG Business Services function is a cornerstone of our UK business. Operating from 20 UK locations and sitting with KPMG Central Services we do work that matters. Within Central Services we are part of a...
-
Governance Assistant manager
3 weeks ago
England, United Kingdom KPMG UK Full timeAssistant Governance Manager Base Location: Watford, Reading, Bristol, Milton Keynes – with travel to the London office when required The KPMG Business Services function is a cornerstone of our UK business. Operating from 20 UK locations and sitting with KPMG Central Services we do work that matters. Within Central Services we are part of a...
-
Cyber Governance Analyst
4 weeks ago
England,, UK, United Kingdom Fruition IT Full timeJob title: Cyber Governance Analyst Location: UK (Remote with some travel to UK sites) Salary: Up to £60,000 + package Why Apply? This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies while...
-
Cyber Governance Analyst
1 month ago
England, United Kingdom Fruition IT Full time €60,000Job title: Cyber Governance Analyst Location: UK (Remote with some travel to UK sites) Salary: Up to £60,000 + package Why Apply? This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies...
-
Cyber Governance Analyst
1 month ago
England, United Kingdom Fruition IT Full timeJob title: Cyber Governance AnalystLocation: UK (Remote with some travel to UK sites)Salary: Up to £60,000 + package Why Apply? This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies while...
-
Cyber Governance Analyst
1 month ago
England, United Kingdom Fruition IT Full timeJob title: Cyber Governance Analyst Location: UK (Remote with some travel to UK sites) Salary: Up to £60,000 + package Why Apply? This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies while...
-
Cyber Governance Analyst
1 month ago
England, United Kingdom Fruition IT Full timeJob title: Cyber Governance Analyst Location: UK (Remote with some travel to UK sites) Salary: Up to £60,000 + package Why Apply? This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies while...
-
Cyber Governance Analyst
1 month ago
England, United Kingdom Fruition IT Full time €60,000Job title: Cyber Governance Analyst Location: UK (Remote with some travel to UK sites) Salary: Up to £60,000 + package Why Apply? This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies...
-
Cyber Governance Analyst
1 month ago
England, United Kingdom Fruition IT Full timeJob title: Cyber Governance Analyst Location: UK (Remote with some travel to UK sites) Salary: Up to £60,000 + package Why Apply? This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies...
-
Regulatory Risk governance manager
2 months ago
England, United Kingdom Clinical Computing Full timeJob Title: Governance, Risk & Compliance Director The Constellation Kidney Group is the global leader in dialysis care software and technology services. Clinical Computing, along with Mediqal Health Informatics., Clinical Computing, Mediqal Health Informatics and Constellation Kidney Group (Canada) all provide Electronic Medical Record (EMR) solutions...
-
Regulatory Risk governance manager
2 months ago
England, United Kingdom Clinical Computing Full timeJob Title: Governance, Risk & Compliance Director The Constellation Kidney Group is the global leader in dialysis care software and technology services. Clinical Computing, along with Mediqal Health Informatics., Clinical Computing, Mediqal Health Informatics and Constellation Kidney Group (Canada) all provide Electronic Medical Record (EMR) solutions...
-
Information and Governance Manager
2 weeks ago
England, United Kingdom Understanding Recruitment NFP Full time €52,000 - €56,500Information Governance Manager - REMOTE This role supports an organization dedicated to children with hearing loss, focusing on inclusivity and advocacy while prioritizing data protection and cybersecurity. The information governance manager combines the responsibilities of a data protection officer (DPO) with cybersecurity policy oversight. You’ll...
-
Information and Governance Manager
7 days ago
England, United Kingdom Understanding Recruitment NFP Full time €52,000 - €56,500Information Governance Manager - REMOTE This role supports an organization dedicated to children with hearing loss, focusing on inclusivity and advocacy while prioritizing data protection and cybersecurity. The information governance manager combines the responsibilities of a data protection officer (DPO) with cybersecurity policy oversight. You’ll...
-
Governance, Policy and Performance Team Lead
3 weeks ago
England, United Kingdom Mitie Full time €10,000Join us and help deliver the exceptional, every day. Job Summary We are seeking an experienced Governance, Risk, Policy, and Process Manager to lead the development, implementation, and management of governance frameworks, risk management policies, and procurement processes. Reporting to the Head of Governance, Compliance and Risk, this role includes...
-
Governance, Policy and Performance Team Lead
3 weeks ago
England, United Kingdom Mitie Full timeJoin us and help deliver the exceptional, every day. Job Summary We are seeking an experienced Governance, Risk, Policy, and Process Manager to lead the development, implementation, and management of governance frameworks, risk management policies, and procurement processes. Reporting to the Head of Governance, Compliance and Risk, this role includes...
-
Governance, Policy and Performance Team Lead
1 month ago
England, United Kingdom Mitie Full timeJoin us and help deliver the exceptional, every day.Job SummaryWe are seeking an experienced Governance, Risk, Policy, and Process Manager to lead the development, implementation, and management of governance frameworks, risk management policies, and procurement processes. Reporting to the Head of Governance, Compliance and Risk, this role includes ensuring...
-
Governance, Policy and Performance Team Lead
1 month ago
England,, UK, United Kingdom Mitie Full timeJoin us and help deliver the exceptional, every day.Job SummaryWe are seeking an experienced Governance, Risk, Policy, and Process Manager to lead the development, implementation, and management of governance frameworks, risk management policies, and procurement processes. Reporting to the Head of Governance, Compliance and Risk, this role includes ensuring...
