Framework Compliance Specialist - 1 Year Maternity Cover
GBR - London
Mimecast
Mimecast enables 42,000+ organizations globally to Work Protected, helping to secure what's most vulnerable - communications, people, and data.Assurance Risk and Control (ARC) is looking for a Framework Compliance Specialist to cover for the current head of the department during her maternity leave. This is a 12 month role based in the UK reporting to the VP of ARC.
This position supports our cyber security and ESG certification programme, and the successful candidate will need extensive experience in compliance activities associated with ISO 27001, ISO 14001 and SOC 2 as a minimum.
The nature of this position requires contact with company employees at all levels as well as contact with external auditors, client representatives, vendors and other business-related representatives.
What You'll Do:
- Work with Internal and external stakeholders to strengthen Environmental policy and assist in coordinating efforts to measure, reduce and manage carbon emission
- Assist in the coordination of Internal and External ESG materiality assessment and stakeholder engagement triage
- Manage GHG emissions reporting including Scope 1, 2, and 3 emissions calculations, as applicable, for internal and external reporting.
- Lead, coordinate and review requirements for ESG annual assessments and rating submissions.(i.e. Investor assessments and ESG rating agencies)
- Lead 14001 regular collection of data, continuous monitoring and participate in on-going assurance processes for non-financial data
- Collaborate with cross functional, cross geography team members to improve the process for data reporting and analysis and develop proposals to strengthen global governance
- Provide guidance to the ESG council for the setting of Environmental Management system objectives and possible targets
What You'll Bring:
- Good knowledge and practical experience of developing, implementing and improving - Environmental Management Systems compliant with ISO14001:2015
- Experience with the examination or implementation of technical controls, such as SOC 2, ISO, TISAX or NIST 800-53
- Excellent verbal and written communication skills
- Has demonstrable skill working with internal and external stakeholders
- Experience engaging with external auditing bodies
- Knowledge of key environmental and sustainability principles
- Capable of producing quality outcomes whilst meeting demanding deadlines, across concurrent and dynamic work streams
Desirable...
- Understanding and experience with SASB, TCFD, CSRD and/or ISSB frameworks
- Has worked in an environment that has an external interface with customers or regulators
- Has worked in a GRC, technical audit or corporate governance function
- Is experienced in implementing technical controls in an Agile based software development environment
- Is currently working, or has experience of working, as a technical auditor for a software company or cloud service provider
What We Bring:
We are Mimecasters. And we are alive with purpose.
Your personal and professional growth matter to us. At Mimecast, we provide the tools, training, and mentorship necessary to elevate your skills and expertise continually. As you thrive, so does the organization, creating a symbiotic relationship that fuels our collective success. In return, we promise you first-class development, hybrid working, ample rewards with an uncapped commission structure, and a company culture you’ll find it difficult not to fall in love with.
In addition to applying, sign up for our Talent Community and stay connected through our career blog, company updates and events which may be of interest. More importantly .... be visible to our Global Talent Acquisition Team and be the first to receive new opportunities which may align with your skills and career aspirations. https://crm.mimecast.com/flows/talentcommunity
We look forward to hearing from you!
#LI-MB1
DEI Statement
Cybersecurity is a community effort. That’s why we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone – unless they’re a cybercriminal, of course.
We’re proud to be an Equal Opportunity and Affirmative Action Employer, and we’d encourage you to join us whatever your background. We particularly welcome applicants from traditionally underrepresented groups.
We consider everyone equally: your race, age, religion, sexual orientation, gender identity, ability, marital status, nationality, or any other protected characteristic won’t affect your application.
Due to certain obligations to our customers, an offer of employment will be subject to your successful completion of applicable background checks, conducted in accordance with local law.
DEI Statement
Cybersecurity is a community effort. That’s why we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone – unless they’re a cybercriminal, of course.
We’re proud to be an Equal Opportunity and Affirmative Action Employer, and we’d encourage you to join us whatever your background. We particularly welcome applicants from traditionally underrepresented groups.
We consider everyone equally: your race, age, religion, sexual orientation, gender identity, ability, marital status, nationality, or any other protected characteristic won’t affect your application.
Due to certain obligations to our customers, an offer of employment will be subject to your successful completion of applicable background checks, conducted in accordance with local law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Cloud Compliance Governance ISO 27001 Monitoring NIST NIST 800-53 SOC SOC 2 TISAX
Perks/benefits: Career development Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs