“We needed to find solutions to a variety of issues whilst being a complex business, operating in a 24/7 environment. Stripe OLT listened and understood immediately the challenges we faced.”

IT Operations Manager
Simon Darley
Trusted by industry leaders

Let's Talk

Call us on one of the numbers below, we cover the whole of the UK.

BriSTOL HQ & The South West

+44 (0) 117 974 5179

London & Surrounding Areas

+44 (0) 207 043 7044

Manchester & the North West

+44 (0) 161 399 1305

“We needed to find solutions to a variety of issues whilst being a complex business, operating in a 24/7 environment. Stripe OLT listened and understood immediately the challenges we faced.”

IT Operations Manager
Simon Darley
Trusted by industry leaders

Request a Call-back.

First we need a few details.

Contact Form Primary popup

“We needed to find solutions to a variety of issues whilst being a complex business, operating in a 24/7 environment. Stripe OLT listened and understood immediately the challenges we faced.”

IT Operations Manager
Simon Darley
Trusted by industry leaders

Request a Call

First we need a few details.

Contact Form Primary popup w/ Captcha
CAREERS

Governance, Risk & Compliance Consultant

The Role

We are seeking a highly motivated Governance, Risk and Compliance Consultant to establish a GRC practice to complement our existing Cyber Security offerings.
The successful candidate will have proven experience in consulting at the Board level with clients ranging from SMEs in the private sector to large public sector organisations and will be able to demonstrate the ability to build and manage a team effectively.
You will be building from the ground up a team that is able to fulfil:
  • Existing outsourced DPIA Management contracts – developing this into a Virtual Data Protection Officer service
  • a growing pipeline of ISO 27001 Auditing and Implementation – developing this into a Virtual CISO service
  • You will work closely with the Security and IT teams to implement and maintain security controls, policies, and procedures.
Location
Remote Hybrid
Type
Permanent, Full-time
Start date
Immediate

who we are looking for.

The ideal candidate will have a strong background in information security, risk management, and compliance, as well as a minimum of 3 years of experience in designing and delivering client-facing ISO 27001-related Information Security consultancy, DPIAs and other Data Protection related services.

You will work closely with the Security and IT teams to implement and maintain security controls, policies, and procedures.

Roles and responsibilities

Build the Team
Work closely with our Sales and Marketing teams to define and implement a repeatable, product-based offering that is aligned with the ISO 27001 standard and UK legislature.
Develop a Virtual Information Security Advisor Service
Which includes:
  • Developing an ISO 27001 Implementation programme
  • Managing the existing Internal Audits Managed Service offering.
Develop a Virtual Data Protection Advisor service
You will be responsible for carrying out Data Protection Impact Assessments for existing clients and managing a dedicated Data Protection advisor (yet to be hired).
You will help clients design and implement a Data Protection offering from the ground up, including:
  • Establishing ROPA
  • Establishing DPIA questionnaires and processes
  • Performing DPIAs
  • Designing and implementing Performing Supplier due diligence processes.  
Internal Information Security Governance
  • Oversee our organization’s information security management system (ISMS) in accordance with ISO 27001 standards.
  • Develop and maintain information security policies and procedures to protect the organization’s assets and data from cyber threats in accordance with industry standards and regulatory requirements.
  • Conduct risk assessments, manage the company Risk Register and Risk Treatment Plan, and oversee the programme of in-house and customer-facing ISO 27001 Internal Audits.
  • Prepare and present security reports for senior management and board members on the status of the organization’s information security program.
  • Provide guidance and support to all business units to ensure compliance with information security policies and procedures.
  • Review and approve security-related elements of vendor contracts and manage the security elements of the Supplier Onboarding and System Onboarding processes.
  • Work with IT teams to ensure that all security measures are properly implemented and integrated into the organization’s IT infrastructure.
  • Evaluate and report on the effectiveness of the organization’s ISMS, including identifying risks and areas for improvement.
  • Assist in investigations of Security Incidents and implementing corrective actions.
  • Manage relationships with external certification bodies, auditors, and other stakeholders.
  • You will have overall responsibility for the internal Data Protection function at Stripe OLT.

Key Qualities

  • Passion and knowledge for Data Protection
  • Willingness to learn other areas such as ISO 27001
  • Exceptional task management skills.
  • Methodical and detail-oriented approach.
  • Strong process-driven mindset.
  • Confident presentation abilities.
  • Outstanding interpersonal and communication skills.
  • Sociable, with the ability to fluently discuss data protection with senior client staff and internal leadership.

Benefits

  • Permanent role with a competitive salary
  • Bonus scheme
  • Training– full on-site training will be provided
  • 25 days holidays, plus bank holidays
  • Enhanced pension plan
  • Private Healthcare (following probation)
  • Regular staff socials
  • Unlimited fruit, tea and coffee
  • Cycle to Work Scheme
TO APPLY FOR THIS ROLE, PLEASE SEND YOUR CV, ALONGSIDE A COVERING LETTER TO RECRUITMENT@STRIPEOLT.COM (NO AGENCIES PLEASE)
Who we are
Stripe OLT are an award-winning, IT & Cyber Security Provider, based in London, Bristol & Manchester.

Founded in 2004, we have 18 years of extensive technology experience, specialising in secure, cloud-first Microsoft technologies.
Our values
✅ Technology is our passion
✅ We take ownership
✅ We create strong partnerships
✅ We act with integrity
✅ We drive client success