Compliance Specialist

Compliance Specialist

London, United Kingdom (Hybrid - 3 days per week in office) Up to £55,000 + Benefits

With a recent strategic investment from Zurich Insurance and backing from the people behind Deliveroo, Zoopla, and Delivery Hero, we continue to grow and evolve. Our journey has already been featured in The Economist, TechCrunch, and The Times, just to name a few.

A brief overview:

As a Compliance Specialist, you'll play a vital role in ensuring that Onsi meets evolving regulatory, operational, and cybersecurity obligations. Reporting directly to the Head of Compliance, this role is critical in maintaining our regulatory posture and ensuring that security-related compliance requirements are consistently met across our business.

You'll collaborate closely with engineering, product, legal, operations and information security. Still, your primary focus will be on governance, oversight, and assurance, ensuring Onsi operates in line with best practices and applicable laws, particularly within cybersecurity, data protection, and operational risk.

What you will do:

• Lead and support the implementation of key compliance and cybersecurity frameworks (e.g. UK GDPR, ISO 27001, Cyber Essentials), while developing regulatory risk frameworks that track and operationalise emerging obligations.
• Conduct and coordinate risk assessments, internal reviews, audits, and control testing to ensure compliance with regulations, internal policies, and best practices.
• Help develop and maintain security governance documentation, including policies, standards, procedures, and awareness content.
• Prepare the organisation for external audits, regulatory reviews, and due diligence processes, particularly in relation to regulatory risk and operational resilience.
• Oversee third-party vendor and partner assessments from a compliance and cyber risk perspective.
• Work cross-functionally with Compliance, Product, Engineering, and Operations to identify, assess, and mitigate risks.
• Maintain clear ownership of security-related compliance obligations, working alongside (not under) InfoSec and Engineering.
• Champion a culture of compliance and continuous improvement in secure development and delivery practices.

You will love this opportunity if:

You're someone who thrives when taking ownership, challenges the norm, and celebrates the small wins along the way. Whether it's navigating ambiguity or owning your impact, this role will allow you to stretch your limits and grow. There is no 'I' in Onsi; we don't take ourselves too seriously and always win as a team.

You will need:

• A degree in a relevant discipline (e.g. Law, Information Security, Cybersecurity, Risk Management), or equivalent professional experience.
• Around 4+ years of experience in compliance, risk management, information security, or cybersecurity governance - ideally within a regulated environment such as financial services or fintech.
• The ability to understand and apply regulatory frameworks (e.g. UK GDPR, ISO 27001) and translate them into business-friendly policies, controls, and processes.
• Confidence working with regulatory frameworks like UK GDPR, ISO 27001, and Cyber Essentials, and a willingness to navigate evolving guidance such as Network and Information Systems Regulations 2018 (NIC) or Payment Card Industry Data Security Standards (PCI DSS)
• Strong communication and documentation skills, with the ability to collaborate effectively with cross-functional teams, including Engineering, Product, and Legal.
• A self-starter mindset, who is proactive, curious, and resilient, with the discipline to manage your learning and growth.

Desirable Qualifications and/or knowledge (any of the following):

• Certifications or practical experience as/in CISMP, CompTIA Security+, ISO 27001 Lead Implementer, CISM, CISSP, or PCI DSS QSA.
• Awareness of key regulations, including UK GDPR, Data Protection Act 2018, and the NIS Regulations
• An understanding of security risk management, governance, and policy implementation
• Awareness of common security threats, vulnerabilities, and related controls
• Basic knowledge of secure software development practices

️ This role isn't for you if

• You want a pure-play strategy & management role. We're all individual contributors here too.
• Don't thrive in unpredictable, unstructured environments. Things change here, often.
• Struggle with ambiguity or uncertainty. We're on a continuous learning journey, and things are often in flux.
• Want a highly specialised & defined role. We tend to operate more as hands-on generalists, which has a high degree of fluidity. "That's not in my job description" isn't a phrase we tend to use!
• You work best independently and remotely - we collaborate often and value being together and exchanging ideas in real time.

Excited about this opportunity? We'd love to hear from you! Please apply directly through the application link . We kindly ask that you apply through the link rather than reaching out directly, as it's the quickest way for us to give your application the attention it deserves. We can't wait to review your application and hopefully get to know you soon!

What will you get in return?

Benefits:

• Pension Contributions - tiered matching up to 7%. (UK)
• Access to Onsi ODP and Marketplace
• 25 days annual leave plus bank holidays. Increased holiday allowance scheme up to 35 days plus holidays with tenure.
• Birthday day off, because no one should have to work on their birthday!
• Special days off - up to 3 extra days for life events like weddings and moving days
• 1 month paid sabbatical after your 5th year of service.
• Enhanced Parental Leave - enhanced pay and staggered return to work.
• Family Leave, starting (or growing) a family is a major life event. We're here to support you through everything, from fertility treatment to appointments.
• Personal development budge t to help you grow. £500 per annum increasing to £1500 after 3 years.
• Dedicated Learning & Development days - 12 days per annum

Perks:

• Access to Onsi Marketplace & ODP
• Flexible working hours and location : Split your time between your home and any of our offices in London or Amsterdam.
• Work from abroad - up to 20 days per annum
• Office Snacks & Drinks Enjoy a variety of snacks, coffee, tea, and more!
• Social and team activities : ️ Team lunches, coffee catch-ups, after-work get-togethers, and quarterly events - there's always something happening to bring everyone together.
• Onsi swag : Onsi-branded gear like hoodies, notebooks, and water bottles, as welcome gifts and for milestone anniversaries!
• Knowledge Sharing: Lunch & Learns, Monthly Speaker Series (bringing you perspective and insights from an array of wonderful people) Team workshops and offsites.
• ️ Keep healthy with 24/7 GP, Mental Health Support & Gym Discounts.
• Cycle to work and Tech schemes saving you money and spreading the cost.

Our Values:

• Get Onside: We recognise that we're strongest as a team when we unite to achieve our mission. We're committed to supporting & bringing out the best in each other. Put simply, we're on each other's side.
• Say It Like It Is : We embrace clarity, concision and transparency. Why? Because candour enables quality conversation, better decisions and greater speed.
• Bring Your Edge: Our creativity and innovation stems from our unique perspectives. We celebrate our diversity of thought, welcome new ideas and cultivate the talents that set us apart. We actively participate in creating an inclusive and respectful community where everyone feels valued.
• Make It Count: We pursue our goals with determination and a laser focus on what's important while disregarding what's not. We strive to succeed, accomplish and perform.

Our Commitment:

We aim to foster a diverse and inclusive workplace where differences are valued and where employees are treated fairly and supported in achieving their full potential.

Onsi is therefore fully committed to ensuring that it recruits, develops and retains employees solely on merit and that no one is treated less favourably because of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex or sexual orientation.

Thank you for considering Onsi. We're looking for passionate individuals to help us shape the future of work. If this opportunity excites you, we'd love to hear from you!