About us
Founded in 2008, CitNOW is an innovative, enterprise-level software product suite that allows automotive dealerships globally to sell more vehicles and parts more profitably. CitNOW’s app-based platform provides a secure, brand-compliant solution – for dealers to build trust, transparency and long-lasting relationships.
CitNOW Group was formed in 2021 to unite a portfolio of 12 global software companies leveraging innovation to aid retailers and manufacturers in delivering an outstanding customer experience. We have over 300 employees worldwide who all contribute to our vision to provide market-leading automotive solutions to drive efficiencies, seamlessly transforming every customer moment.
The CitNOW Group is no ordinary technology company, we live a series of One Team values and this guiding principle forms the foundation of CitNOW Group’s award winning, collaborative and inclusive culture. Recognised recently within the Top 25 Best Mid Sized Companies to work for within the UK, we pride ourselves on being a great place to work.
About the role
We're recruiting for an Internal Compliance Officer to be tesponsible for managing and maintaining compliance accreditations with a particular focus on ISO 27001, including leading internal and external audits and maintaining a comprehensive set of company policies. The role involves ensuring adherence to evolving regulations, general Health & Safety tasks, managing risk assessments, and supporting incident response processes.
Key responsibilities include:
Compliance Accreditations
* Overall management of Compliance areas of responsibility within our Information Security Management System (ISMS) including leading the ISO Committee, management and scheduling of internal audits and ensuring existing policies are updated to reflect organisational practises
* Responsibility of the successful completion and scheduling of our external audits with third party auditing bodies
* Creation of additional policies and procedures in line with evolving legislation or accreditation requirements;
* Staying abreast of the regulations applicable to the business, ensuring compliance through the management of internal teams and stakeholders
* Ensure staff awareness of our Policies and Procedures, including creation of effective communications and training plans to our internal staff, monitoring the reporting of completion rates
* Management of new and existing accreditations including, for example TISAX
General Compliance
* Supporting with adhoc Health & Safety responsibilities as required including for example, liaising with the Health and Safety appointed third party, auditors and working group representatives
* Raising, documentation and mitigation of applicable Compliance related risks including the Health and Safety Risk Register, completion of risk assessments and assisting in our monthly risk reports to the senior leadership team
* Assist, or own in some cases, incident response proceedings in the event of an Information Security Incident or Health and Safety Incident
* Collaboration with internal and external teams to raise awareness of Compliance procedures
* Supporting key stakeholders with raising NDA’s and Data Sharing Agreements
We are looking for:
* Demonstrable knowledge working with and implementing ISO 27001
* Knowledge and awareness of Health & Safety procedures and best practise with knowledge of the Health & Safety at Work Act 1994 advantageous
* Further information security accreditations or general ISO knowledge is advantageous but not a requirement
* A confident communicator with demonstrable Project Management skills, able to work on multiple projects simultaneously
* Comfortable liaising with all stakeholders including senior leadership and senior leadership team members
* Skilled in organising tasks and establishing priorities to meet deadlines
* Highly organised, with a strong attention to detail
* A methodical individual with the ability to follow as well as implement new processes and procedures
In addition to a competitive salary, our benefits package is second to none. Employee wellbeing is at the heart of our people strategy, with a number of innovative wellness initiatives such as flexi-time, where employees can vary their start and finish times within our core business hours and/or extend their lunch break by up to 2 hours per day. Employees also benefit from an additional two half days paid leave per year to focus on their personal wellbeing.
We recognise the development of our people is vital to the ongoing success of the business and proudly promote a culture of continuous learning and improvement, along with opportunities to develop and progress a successful career with us.
The CitNOW Group is an equal opportunities employer that celebrates diversity across our international teams. We are passionate about creating an inclusive workplace where everyone’s individuality is valued.
View our candidate privacy policy here - Group Global Privacy Policy