Head of Compliance & Risk Management

Salary: £65k to £75k pa (depending on experience)

A leading print and communications company is searching for an individual to ensure the company is compliant with current, applicable International Standards (9001, 14001, 22301, 27001), Health and Safety legislation, and other standards to which the company is certified.

You will manage the compliance department to:

Responsibilities

• Maintain registers of legislation, particularly Environmental, Data Protection, and Health & Safety.
• Monitor new and proposed legislation.
• Audit compliance on a regular basis and report non conformance to the Directors.
• Ensure the department maintains management systems to comply with ISO 9001, 14001, 22301, 27001, CPAS, FSC/PEFC and Health and Safety legislation.
• Work with management to formulate company policies and procedures.
• Plan and coordinate employee awareness of company policies and procedures.
• Plan, direct and coordinate the quality assurance activities undertaken and serve as the catalyst in developing, promoting, implementing and maintaining a quality improvement programme.
• Assist top management to identify, assess and mitigate operational, strategic and reputational risk.
• Maintain a risk register, risk treatment plans and business impact analysis.
• Promote a risk based management culture.
• Maintain a schedule of internal audits.
• Ensure internal auditors carry out and report on planned audits.
• Ensure that non conformances and arising preventative actions are tracked and closed.
• Manage external surveillance, due diligence and insurance assessor visits.
• Manage procedures to effectively investigate incidents and accidents, ensuring that root cause and preventative actions are adequately identified.
• Report activity weekly to the Management Team.
• Report on activity, KPIs and trends to the Board.

GDPR & Data Protection

Our client takes the adherence to GDPR laws extremely seriously. Candidates must have experience handling data confidentially, disclosing it only on a need to know basis, and processing data fairly and lawfully for the specific registered purpose, in line with national legislation and the organisation's policy on personal and business information such as contract prices and terms.

Note: This position has now been filled.