Jobs

Portfolio Security and Compliance Manager (Part-Time)


Job details
  • Valsoft Corporation
  • 6 days ago

Valsoft Corporation is looking to hire a Portfolio Security and Compliance Manager to support across a growing portfolio in Europe!

We are seeking a proactive and experienced Compliance and Security Manager to join our Portfolio team at Valsoft Corporation, a leading investor in Vertical Market Software companies. The successful candidate will be responsible for ensuring that the portfolio companies are protected against cybersecurity risks and remains compliant with key standards and regulations such as ISO 27001, ISO 9001, GDPR, and other local regulations. This position is critical in safeguarding our infrastructure, services, and customer data.

This role is offered on a part time basis at 2-2.5 days per week (or similar).

Requirements

Key Responsibilities:

Cybersecurity Management:

  • Implement, and monitor comprehensive cybersecurity strategies in collaboration with the Valsoft Security team to protect against emerging threats. 
  • Provide direction and oversight to ensure portfolio companies conduct risk assessments, identify and manage vulnerabilities effectively and efficiently, and perform annual penetration tests. Lead these efforts for smaller portfolio companies where security and compliance resources are lacking.  
  • Work closely with IT and development teams to ensure secure coding practices, system configurations, and continuous monitoring. 
  • Provide oversight and support to ensure portfolio companies have documented incident response, business continuity, and disaster recovery plans and procedures that reflect best practices. 
  • Maintain and update cybersecurity policies and procedures for our portfolio companies, ensuring compliance with industry best practices and corporate security requirements. 
  • Escalate and report any areas of concern identified to the Portfolio Management Team with a plan of action. 
  • Ensure employee onboarding and offboarding procedures align with best practices.  

Compliance Oversight:

  • Provide direction and oversight to portfolio companies to ensure they meet applicable compliance obligations such as ISO 27001, ISO 9001, and GDPR.  
  • Serve as the lead resource and primary liaison for smaller portfolio companies during external audit engagements. This includes working on compliance-related deliverables (documentation, gathering of evidence, etc.) as well as leading meetings with external auditors. 
  • Develop, implement, and manage data protection programs, ensuring all data privacy practices comply with GDPR and other applicable laws. 
  • Advise leadership and staff on any relevant changes in legislation, standards, and compliance requirements and support policy updates as needed 
  • Act as Data Protection Officer and main point of contact with the ICO. 
  • Liaise with customers regarding their data protection needs. 
  • Provide advice and direction across the organisation in understanding the risks relating non-conformance to regulations. 
  • Promote a culture of robust regulatory compliance and continuous improvement. 
  • Document management; including ensuring all documents, policies, procedures, guidance, check lists are tracked, reviewed, up to date and stored correctly.  

Training and Awareness:

  • Promote data protection awareness and understanding across the portfolio and ensure full employee participation in Valsoft’s Security Awareness Training program. 
  • Foster a culture of cybersecurity awareness and data protection within the organization. 
  • Communicate compliance requirements and risk management strategies to all levels of the organization. 

Risk Management:

  • Identify, evaluate, and mitigate risks related to information security and regulatory compliance. 
  • Maintain a risk register and regularly report to senior leadership on the company’s risk posture. 
  • Collaborate with relevant teams to mitigate risks and ensure the continuity of business operations. 

About you:

  • You have worked in a similar role with a record of driving compliance for the business, ideally leading the function or department or working closely with senior management team.  
  • You have strong communication and documentation skills, are proactive in your approach, and can perform your core responsibilities while  contributing to organisational and cultural awareness and change.  
  • You can lead all compliance-related initiatives and understand the commercial implications of regulatory changes for our portfolio companies and their clients.   

Qualifications:

  • Bachelor’s degree in Information Security, Compliance, Computer Science, or a related field.
  • At least 5 years’ experience of working with Senior Leaders to deliver change or results.
  • Professional certifications such as ISO 27001 Lead Auditor, CISM, CISSP, or equivalent are highly desirable.
  • Proven experience in compliance, cybersecurity, and risk management, preferably in the software and services sector.

Key Skills:

  • Cybersecurity strategy and implementation 
  • ISO 27001, ISO 9001, and GDPR compliance management 
  • Risk assessment and mitigation 
  • Strong analytical and problem-solving skills. 
  • Audit & InfoSec documentation development 
  • Strong communication skills to inspire and educate others  

Benefits

Private Medical Cover:The Company offers a private medical cover through Aviva of which you will be eligible for enrollment upon successful completion of your probationary period. The private medical cover is reviewed annually, and the Company reserves the right to change coverage with written notice. All benefits will be outlined to you at the time of enrollment. 

Life Assurance:The Company offers a life assurance cover to the amount of x4 base salary of which you will be eligible for enrollment upon successful completion of your probationary period. The life assurance cover is reviewed annually, and the Company reserves the right to change coverage with written notice. All benefits will be outlined to you at the time of enrollment. 

Sign up for our newsletter

The latest news, articles, and resources, sent to your inbox weekly.

Similar Jobs

Senior Director - Product Manager, Fraud, Security and Compliance

Senior Director - Product Manager, Fraud, Security and Compliance Vonage is a leading CCaaS and CPaaS and UCaaS provider. Critical to our mission is the fact that we are committed to delivering cutting-edge solutions that ensure trust, security, and compliance in the digital age. We are expanding rapidly and are...

Vonage London

Technology Risk And Compliance Manager

About the roleThis is a fantastic opportunity to join Tesco's Cyber Risk function to lead the end-to-end delivery of high quality testing and assessment activities related to IT General Controls (ITGCs) and Application Controls (ITACs) in support of our Internal Controls over Financial Reporting (ICFR) management assurance/attestation programme.You will be...

Tesco Welwyn Garden City

Senior Named Account Manager

DescriptionAt Proofpoint we offer and value the following, “Good work life balance”, “Excellent Compensation and benefits” and most importantly a culture & colleagues that inspires people to do their best”Corporate OverviewProofpoint is a leading cybersecurity company protecting organizations’ greatest assets and biggest risks: vulnerabilities in people. With an integrated suite...

Proofpoint Reading

Senior Customer Success Manager

It's fun to work in a company where people truly BELIEVE in what they're doing!We're committed to bringing passion and customer focus to the business.Corporate OverviewProofpoint is a leading cybersecurity company protecting organisations’ greatest assets and biggest risks: vulnerabilities in people. With an integrated suite of cloud-based solutions, Proofpoint helps...

Proofpoint London

Inside Sales Engineer, France (French Speaking)

It's fun to work in a company where people truly BELIEVE in what they're doing!We're committed to bringing passion and customer focus to the business.Corporate OverviewProofpoint is a leading cybersecurity company protecting organizations’ greatest assets and biggest risks: vulnerabilities in people. With an integrated suite of cloud-based solutions, Proofpoint helps...

Proofpoint Reading

Cyber Security Lead

Description:IT Security is a global function residing within the IT department operating from London and Houston. The IT Security Team Lead will be based in London. The purpose of the IT Security function is to manage cyber risks and issues for EDF Trading globally.Position purposeThe IT Security Team Lead provides...

E1 EDF Trading Ltd London