Intro
If you are an amazing Technical Risk and Compliance Manager, want to do great things with a fast-growing SaaS company, get well compensated and work at an amazing company with amazing people, then keep reading!
Background
In 2015 Slicedbread launched an innovative technology application called Sharedo. Described as a work and case management product, the platform helps organisations define, execute, and manage work such as legal cases, exploration, project development, property management, help desk, ticketing systems and much more.
In September 2018, we closed a round of series-A funding led by Sussex Place Ventures, the venture capital arm of the London Business School. Although the company has always been a profitable, self-funding company, this investment enabled us to accelerate our vision to make sharedo the de-facto work planning and management platform.
Since its introduction, we have successfully delivered Sharedo across many verticals – FTSE100 energy companies, media and telecoms companies. That said we have focused our marketing efforts on the legal market where today ShareDo is in use at 40% of the Magic and Silver circle firms and 16% of the UK Top 100.
The next “chapter” of our journey is focused on repeating the success we have had in legal in ancillary vertical markets – Insurance, Regulatory and Debt.
As a result, having maintained positive growth, and as we continue to grow rapidly, we are looking to expand our talented and experienced teams.
The people
Everyone says this, but the people at ShareDo truly are our biggest asset. Why?
Every individual in the team is unique, they have a diverse range of skills and specialisms, but the one thing they all have in common is a desire to learn. Our industry is constantly evolving and let’s face it, it’s impossible to be an “expert” in everything. Our people learn from each other daily, there’s a desire to not only share knowledge, but to absorb it too. Every day, we learn from each other – and not just in a top-down senior to junior fashion – someone with 25 years’ experience will regularly learn new things from someone with 2.
For that to flourish the culture needs to enable it, and culture isn’t a tag line dictated from on-high, designed to attract new hires, it’s what happens organically around the people involved. You won’t find elitist types, cargo culters, or anyone suffering from the Dunning Kruger effect – we firmly believe that no-one can possibly know everything, and that there’s no such thing as a silly question. We have standards, sure, we have opinions, true – but they are weakly held, and everyone is open to new thinking.
The customer success team is made up of business solution architects, solution specialists, technical implementation consultants, customer success managers – all with various levels of expertise and experience – we have some with 25+ years’ experience, some with 10, and a handful of relatively new entrants to the world of software.
Aside from the tech and learning culture though – there’s a wild range of interests and outside specialisms. We’ve got cyclists, runners, skiers, snowboarders, video game players, movie fans, musicians, D&D players, Rubik’s cubers, podcasters, streamers, and even a resident PhD in astrophysics.
The Role
We are looking for a Technical Risk and Compliance Manager to join our team and help us ensure that our SaaS products meet the highest standards of security and that we have both the technical mechanisms and processes in place to protect our customers data.
You will be responsible for overseeing and managing the technical aspects of our risk and compliance program. This will include planning and co-ordinating risk assessments, audits, and reviews, implementing policies and procedures, and providing guidance and training to staff and stakeholders.
RESPONSIBILITIES
Technical Expertise:
- Deep understanding of the technical risks faced by a SaaS software company and the design aspects which can be put in place to mitigate these risks.
- Knowledge of secure software development practices, secure networking and protection mechanisms and data security.
- Stay up-to-date with the latest industry security news, vulnerabilities, and risks.
Technical Risk
- Develop and maintain the technical compliance framework and documentation for ShareDo, keeping this updated as changes are made to our security approach.
- Implement and monitor technical controls and measures to ensure compliance with internal and external policies, regulations, and requirements, and address any gaps or issues.
- Create and suggest useful measurements to aid in improving Information security processes and procedures.
- Manage periodic reporting requirements to relevant stakeholders.
Compliance Management:
- Collaborate with external consultants to plan and deliver industry standard security accreditations such as ISO 27001& 9001, Cyber Essentials Plus, SOC2, IRAP and ensure these are renewed successfully on an annual basis.
- Collaborate with internal and external technical security teams to schedule security testing, review output from security testing and schedule remediation of any detected vulnerabilities.
- Liaise with external vendors to manage security and regulatory requirements.
- Contribute to the development and execution of the security awareness programme.
Sales & Customer Success Collaboration:
- Create and catalogue the responses made in Requests for Information or Requests for Proposal around ShareDo security to ensure we provide accurate responses based on our evolving security posture.
- Respond to all aspects of security and compliance requests from current and prospective customers, including, input into the customer contracting process to ensure that we can meet the security requirements stipulated in agreements.
- Collaborate across the organisation to embed a proactive risk culture.
Client Consulting:
- Consult with clients to provide best practice in configuring ShareDo security including configuration of identity providers, user types, permissions and security barriers
Feed into product design:
- Identify opportunities where ShareDo’s application and secops features can be improved and work alongside product management to make those happen
Continuous Improvement:
- Demonstrate a continued improvement to our overall security and compliance to a set of defined KPIs
Who are you?
- Proven experience in a technical role, preferably in a SaaS software product background.
- Strong technical background and understanding of technical security compliance.
- Excellent presentation and communication skills, both verbal and written.
- Ability to simplify complex technical concepts for non-technical audiences.
- Strong problem-solving and analytical skills.
- Demonstrated ability to work collaboratively in a team environment.
- Willingness to travel as required for client meetings and presentations.
The Hiring process
- You get sent this job ad, you read it and can’t wait to apply.
- We invite you to a Teams call with one of our Professional Services team who will run through the basics with you.
- We invite you back for a more detailed interview (usually with the CCO) and introduce you to the founders.
- We make you an offer.
- You accept.
- You tell everyone how great your new job is.
- Your friends come and join you and you earn a sweet referral bonus.
THE MAIN INTERVIEW
Interviews are always quite intense and stressful experiences (we’re probably as nervous as you!), but we don’t want you to worry or stress about it. Come along and just expect to talk about what you’ve done and the things you already know about.
You’ll be asked questions that go deeper and deeper into your experience, so that we can determine the breadth and depth of what you know, and what unique skills you might bring to the team.
During the course of that interview, remember that you’re also interviewing us – so feel free to come armed with deeply probing questions of your own to work out if we’re a good fit for you as well!
ADVICE
Don’t dress up – just come along, relax, have a chat and be yourself. We like to think we’re a friendly bunch.
Package and work style
You would be based at our offices in lovely Alderley Edge in Cheshire, but we offer a flexible working policy. Flex the times you start/finish as needed, work from the office or at home – whatever suits you.
The salary range is negotiable depending on experience and skill set. We offer private health insurance, critical illness cover, death in service, pension and salary sacrifice, EV car scheme and lots of company activities.
What are you waiting for? Apply already.
If you’ve gotten this far and are still thinking “this is me!” then please drop us a line – Sharedo is the kind of place that amazing people like you deserve to work!