« Home


Senior Manager, Security Risk & Compliance Full Time

at Factor Law Inc Belfast in Belfast (Published at 11-11-2021)

Senior Manager, Security Risk & Compliance

Belfast or Wroclaw

Factor is the leader in next-generation solutions for complex legal work at scale. Clients turn to us for real solutions to real problems, ranging from one-off regulatory projects to long-term managed services. Factor leverages modernized processes, smart resourcing constructs, and the best of legal technology to help clients overcome the limitations of the traditional in-house and law firm models.

We are comprised of more than 600 lawyers, legal specialists, technologists, and process consultants across Europe and North America, and we?re growing! Join us!

The Role

We?re looking for a Senior Security Risk & Compliance Manager to join our risk management function. This is an exciting opportunity ideally suited to someone who has served a Governance, Risk & Compliance (GRC) capacity. You will lead from the front in advancing security risk management practices across the organisation and ensure that we align to our legal, contractual, and standard obligations.

If you like to see the efforts of your work result in continual change then this role is for you! Tasked with establishing risk pipelines, you will work to address non-conformances and opportunities for improvement through corrective action plans. This will involve working collaboratively with the IT security lead on various efforts, including ISO27001 certification, contractual and legal compliance alignment, and overall security risk reduction.

If you believe in being a team player, can collaborate and communicate well with technical and non-technical audiences while bringing a result-driven, focused, high energy, confident, curious, quirky, and most of all fun sense of self, then this is the place for you.

Specifically, this role will require you too:

  • Think holistically about information security and how this role delivers a prioritised order for risk reduction through corrective action

  • Provide leadership, vision, and direction to the wider organisation in all aspects regarding security risk and compliance

  • Achieve and maintain alignment to various compliance obligations

  • Collaborate effectively with internal and external partners to achieve effective security outcomes

  • Provide ongoing guidance and consultation to the organisation on security risk management

  • Maintain a reportable view into the businesses security risk position to inform the business security roadmap.


You are adaptable, authentic, accountable, and values driven. You?re a team player who exhibits personal leadership and leaves things better than you found them. We?re looking for someone who always gives their best and inspires others to do the same. This role requires an individual with a tremendous amount of initiative, organizational skills, and the desire to work in an innovative, entrepreneurial environment and grow within an expanding business. As we are a Global business, there may be a requirement to work across other time zones.

In addition to the above, here are the required skills, knowledge, capabilities, and education for this role:

Essential criteria

  • Previous experience in a security management GRC role

  • Knowledge of cloud security principles, control frameworks and compliance requirements

  • Hands-on experience with risk management technology e.g., GRC tools

  • ISO27001 standard & ISO27002 controls experience

  • Third party risk management experience

  • Ability to coordinate remediation activities through corrective action plans

  • Effective measurement and reporting skills

  • Ability to identify security risk exposures in contract negotiation

Desirable Criteria

  • Experience with any of the Microsoft cloud suite of technology

  • Understanding of global privacy compliance obligations

  • Relevant qualification such as CRISC, CISM, CISA, ISO27001 Practitioner etc.

Additional Information

As a member of an ISO Compliant centre, the candidate will be required to follow the policies and procedures on Information Security Management System in place at the Centre of Excellence and globally at Factor. As a member of the Factor team, the applicant will have access to various company and client assets and will be required to maintain the level of security as identified for each asset.

Factor is an Equal Opportunity Employer.

For more, visit: www.factor.law

Recent jobs at Factor Law Inc

Viewed: 402 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend
« Home