Description
Napier is a new breed of financial crime compliance technology specialist. Our AI enhanced platform – Napier Continuum – transforms compliance from legal obligation to competitive edge.
At Napier, our mission is to fight financial crime through automation & AI. We believe that by automating the detection and prevention of financial crime, we can make the world a safer place for everyone.
Collaboration, innovation and wonderful people are just some of the reasons to bring your career to Napier. Our culture is shaped by our core values that promote equality, creativity, and opportunity in everything we do.
After successfully securing a £45million investment to fuel our ongoing growth and to further invest in our AI products, we are looking for a security program manager to join our security team based in London, reporting directly to the Head of Information Security.
Working within a small team, you’ll help maintain and evolve Napier’s security posture by maturing our compliance frameworks and acting as a security advocate to company staff and key stakeholders.
Key Responsibilities
- Own and enhance the ISMS, ensuring ongoing compliance with leading security frameworks (ISO 27001, SOC 2, DORA, GDPR).
- Lead the maturation of our security compliance frameworks, identifying improvement opportunities and implementing necessary changes.
- Develop and maintain security control matrices, mapping controls across various compliance standards.
- Manage audit schedules and coordinate both internal and external audits.
- Oversee remediation activities stemming from audits and due diligence processes.
- Assist with third-party risk assessments and manage vendor security assurance programs.
- Maintain ISMS documentation and oversee internal business process development.
- Produce and present metrics on the status of information security controls, highlighting trends, anomalies, and business risks.
- Take ownership of security risk management procedures and collaborate with key internal stakeholders.
- Design and deliver security awareness training across the organization.
- As the company and security team grows, the person in this role will be expected to take on line management responsibilities and assist with hiring procedures.
Skills, Knowledge & Expertise
- A minimum of 5 years’ experience in information security governance, risk and compliance.
- Experience implementing and developing key security frameworks, specifically ISO 27001 and SOC 2.
- Experience in developing and reviewing policies, processes, and procedures.
- Hands-on experience with ISMS implementation and performance monitoring.
- Strong understanding of IT services, protocols, and processes.
- Exceptional problem-solving skills and analytical abilities.
- Demonstrated ability to operate autonomously, effectively managing and prioritizing tasks.
- Experience in security incident response and management, as well as third-party supplier security and risk management.
- Excellent communication and stakeholder management skills.
Great to have:
- Previous experience with Microsoft Azure cloud solutions.
- Familiarity with security and compliance tools such as Azure Sentinel (SIEM), Defender for Office 365/Cloud/Endpoint and Microsoft Purview.
- Experience with DORA gap analysis activities and implementation.
- Experience with GDPR risk assessment and documentation.
- Technical security knowledge, though the role primarily focuses on security governance, risk, and compliance.
- Relevant certifications such as CISSP, CISM, CISA, and ISO 27001 Lead Implementer/Auditor.
Why Napier?
- Compensation package (£45,000 - £65,000 based on experience).
- Comprehensive private healthcare through AXA covering optical, audio & dental.
- 25 days of annual leave + bank holidays. An additional two extra days off: we give every employee their Birthday off, and an additional wellness day too.
- Dedicated pension plan through Aviva.
- Life Insurance 4x your annual salary.
- Enhanced Maternity & Paternity leave.
- Income protections policy.
- Work from anywhere for up to 1 month.
- Access to our employee wellbeing programme.
- Gym membership discounts.
- Flexibility in work schedules and locations, ensuring a work-life balance.
- This role can be fulfilled either with a hybrid approach or fully in-office – depending on your preference.
- An open and flexible culture that allows you to work in the best way for you.
- A fast-paced environment, with the ability to make a real impact on our security maturity.
- Regular team socials, including celebrating company milestones, team socials, charity work or holiday parties.
- Free coffee, snacks and fresh fruit provided daily.
- A commitment to professional growth & opportunities for training/certifications.
Interview Process;
1. 30 minute Video Talent screening.
2. 30 minute Video call with Hiring Manager.
3. 2 hour face to face interview with the Hiring Manager in London office.
Please note applicants must have the right to work in the United Kingdom. We are unable to offer sponsorship or take over sponsorship of employment visas at this time
We are compliance technology specialists. Our platform is founded on broad experience and deep expertise; and our products increase efficiency and minimise risk by successfully combining big data technologies with AI and machine learning. It all adds up to the world’s first truly intelligent compliance platform.
But tech is only half the story. Our intelligent approach is applied to underpin your policy, process and procedure, so you can focus on specific outcomes. The Napier platform is fast, scalable and easily configurable, as well as user-friendly. It rapidly strengthens your AML defences and trade compliance capabilities, while meeting your company’s compliance obligations and challenges in any sector.
