We are looking for our senior security and compliance specialist to join our rapidly growing team. This role can be split between our new offices in Reading (1 or 2 days per week) and remote working.
We're working to solve some of the most challenging environmental problems in city centre, last-mile logistics, which means an opportunity to have a significant impact on the world around us, and what it will look like in the future, from your very first day.
We want to revolutionise city centre logistics in order to make urban environments better places to live and work. We're creating the world's safest commercial vehicles by reimagining conventional truck design principles, thanks to our full-electric drivetrain, and thus protecting vulnerable road users.
Our electric powertrain also eliminates harmful tailpipe emissions, removing harmful pollutants that contribute to climate change.
A crucial part of our journey is building a team of outstanding employees who share our vision for the future and our values of safety and sustainability.
You'll be joining a world class team, backed by top investors that all believe in the future we are creating. We have ambitious growth plans for 2022 and beyond, scaling our team and activity at an exciting pace.
We are a people-led company focused around creating an exceptional business, and all employees have a high level of autonomy and a platform to make a real impact.
What you will do :
The senior security and compliance specialist will help Volta Trucks achieve and maintain information security compliance certifications including SOX and ISO 27001, and to establish and maintain the Third-Party Risk management capability and operations.
Reporting to the Information Security and Compliance Manager, you will :
Plan, coordinate, and execute all phases of IT SOX compliance , from scoping, risk assessment, documentation to controls design, implementation, and external audit.
Manage the ISO 27001 ISMS implementation , from scoping, risk assessment, documentation to controls design, implementation and external audit.
Ensure the ISO 27001 ISMS is maintained and updated.
Inform and educate the organisation in the importance of the ISO 27001 certification and upkeep.
Ensure that information security controls are properly designed for all in scope processes and global entities.
Perform security controls testing across the scope of ISO 27002 and SOX, including design & operational effectiveness testing, remediation test work, and roll forward testing.
Design, implement and operate processes for effective management of Volta Trucks third party risk.
Perform supplier due diligence, security assessments, and ISO27001 aligned security audits of suppliers.
Collaborate with vendor managers to effectively manage supplier risks.
Maintain the annual calendar for information security compliance milestones and activity.
Provide regular reporting to security and risk forums on Volta Trucks security compliance status and progress.
Develop and maintain security standards, and procedures.
Provide IT project teams with requirements and design input regarding security compliance.
Liaise with cross-function project teams to provide consulting as a SME on Security compliance.
Create security performance dashboards and provide reports and presentations to the management team.
We would like you to have :
Previous experience managing information security compliance in a corporate or manufacturing organisation.
Previous experience establishing and maintaining a third-party security risk management capability.
Working knowledge and experience of regulatory, industry and security compliance frameworks such as NIST, ISO 27001, SOX, SOC2 and GDPR.
Knowledge of threats, risks and impacts associated to information security.
Strong stakeholder engagement skills, detail-oriented, delivery-focused, and able to manage multiple work streams simultaneously.
Ability to prioritise workload based on the severity of impact and risk to the business.
Strong interpersonal skills, able to communicate across a broad spectrum of users.
Excellent oral, written and presentation communication skills.
Flexible and works within an Agile framework.
Big 4 experience with IT audit background advantageous.
Proven ability to lead audits and manage audit teams.
Advanced Excel skills advantageous
A typical Volta Trucks person :
Thinks and acts in a non traditional way.
Closely shares our values of safety, sustainability and electrification.
Is action-orientated, proactive and works at pace.
Is transparent, progressive & entrepreneurial.
Is adaptable, resilient and open to change.
What working here will be like :
We are a small, fast-growing team so you will have a high degree of ownership and accountability, and you will be directly exposed to all areas of the business.
We are a start-up, so don't have a lot of structures and processes. Things change quickly and we acknowledge when we get things wrong and change direction.
We are a diverse business, from many nationalities and backgrounds.
We really value our people. We have a flexible & remote work environment and a great benefits package & pension scheme
We are committed to creating a first-class work environment. Every employee has a voice and we encourage open communication.