Regulatory Compliance and Legal

We are seeking an experienced Compliance Principal to help us manage, monitor, and oversee a global retailers cybersecurity compliance obligations. You will develop processes for identifying new obligations (regulatory horizon scanning) and implement strategies for complying with these. You will also oversee assessments against existing obligations (e.g. PCI DSS), providing a team of Compliance Specialists with technical direction and support to ensure that the retailer is meeting its obligations. You will act as the key point of contact for Corporate Governance and Business Function leads to deliver strategic initiatives and drive any remediation efforts. Responsibilities Develop and oversee the delivery of a Cybersecurity Compliance Programme and drive strategic improvements across scanning for new regulatory obligations. Lead on oversight and maintenance of an inventory of applicable regional cybersecurity regulations and requirements, considering the impact of ongoing regulatory change on cybersecurity operations. Own and maintain cybersecurity compliance standards and processes and deliver training to relevant teams. Maintain relationships with the retailers Legal, Data Protection and Internal Audit teams to define and deliver strategic compliance solutions. Prepare comprehensive compliance reports for various governance forums that provide clear insights into cybersecurity compliance position and tailor messages according to different audiences’ requirements. Remain up to date with latest cybersecurity legal and compliance obligations across all of the retailers geographies and disseminate knowledge across your team and senior leadership. Coach, mentor, and share SME knowledge with Compliance Specialists, Analysts and Associates, helping them create and progress against personal development plans. Essential ~ Must be knowledgeable in cybersecurity compliance, supported by a general knowledge across cybersecurity governance domains, including: # Cybersecurity risk assessment # Cybersecurity risk management and reporting # Cybersecurity policies, processes, and standards ~ Experience in the compliance and regulatory field within global organisations with diverse geographic and regulatory footprints. ~5 years’ relevant experience, preferably with a strong understanding of the cybersecurity retail regulatory environments. ~ Ability to use lateral thinking to break a problem down into its component parts to identify and diagnose root causes. ~ Ability to communicate complex issues effectively to stakeholders with limited subject knowledge. Unfortunately for this position the client is unable to provide any form of sponsorship