The Compliance Officer is a dedicated, full-time role responsible for designing, implementing, and overseeing the company’s compliance and data privacy frameworks. This role promotes ethical conduct and provides support to the organization on compliance and privacy matters.
The Compliance Officer will serve as the primary liaison with regulators and oversee internal compliance activities, including those related to privacy, ethical conduct, compliance-related investigations, and training programs. The role will also involve some support for Company Secretarial and Corporate Governance matters.
Key Responsibilities
* Develop and maintain a risk-based compliance framework aligned with key risk areas including Anti-Bribery and Corruption (ABAC), Antitrust/Competition Law, Fraud, Conflicts of Interest, and Trade Compliance.
* Conduct ongoing compliance risk assessments and lead remediation efforts.
* Monitor evolving regulations and guide updates to internal policies.
* Establish and implement risk-based third-party risk management procedures (due diligence, monitoring, assurance).
* Design and implement compliance training programs, including role-specific and risk-based training.
* Prepare and present compliance performance reports and continuous improvement plans to leadership.
* Develop and maintain an Ethics and Compliance communications plan (internal and external).
* Lead responses to regulatory inquiries, audits, and examinations.
* Triage reports of misconduct and lead/oversee investigations, maintaining proper records.
* Develop and maintain a comprehensive policy governance framework.
* Coordinate ongoing compliance monitoring and assurance programs.
* Implement and promote internal reporting mechanisms.
* Maintain a robust data privacy framework aligned with the ICO’s Accountability Framework and other standards.
* Lead containment, remediation, and regulatory engagement in the event of data breaches.
* Define and implement the organization’s privacy strategy in alignment with legal and data requirements.
* Provide specialist privacy and ethics advice, embedding privacy into operations.
* Act as the data privacy advisor at leadership and governance forums.
Candidate Requirements
* Proven experience in senior compliance and/or data privacy roles, ideally within industries such as oil & gas.
* Strong understanding of global compliance and privacy standards (UK GDPR, DPA 2018).
* In-depth knowledge of enforcement regimes and regulatory expectations: FCPA, UK Bribery Act, OFAC sanctions, and other frameworks.
* Experience in implementing privacy programs, conducting risk assessments, and managing incidents.
* Excellent leadership, communication, and stakeholder engagement skills.
* Legal, finance, or compliance-related qualifications preferred.
* Privacy certifications highly desirable (CIPP/E, CIPM, ISEB Data Protection).
* Familiarity with frameworks such as ICO Accountability, NIST Privacy, and ISO 27001 is beneficial.