Job Description

UK Remote



50,000 - 60,000



About Tribal



Tribal is a leading EdTech business providing market leading software solutions to the global education market. We strive to research, develop and deliver the products, services and solutions needed by education institutes worldwide to support their primary goals of educating students, providing optimum learning experiences and ultimately delivering successful outcomes.



Tribal's Cyber Security and Compliance team ensures systems are secure by design and meet top security standards while embracing DevOps methodologies. The team stay updated on threats, best practices, and technologies to identify and fix security weaknesses. Their role includes managing tools to detect vulnerabilities, anomalies, and prevent cyberattacks across the organisation.



You will work remotely in the role with the occasional need to travel to one of our Tribal offices.



The Role



As Compliance Manager, you will lead compliance and business continuity staff globally, ensuring Tribal meets regulatory and internal standards. You will oversee the development, accuracy, and consistency of security policies, business continuity plans, and FAQs, ensuring alignment with best practices and industry regulations including compliance around CPI. Collaborating with cross-functional teams, you will validate technical accuracy and maintain clear, accessible documentation. Additionally, you will drive continuous improvement to keep materials updated and support Tribal's compliance commitments.

Your Responsibilities will include:

Manage and continually improve Tribal's automatic Governance, Risk and Compliance (GRC) system, including ISO / Cyber Essentials Plus, Essential Eight and future frameworks.

Ensure compliance of CPI to allow us, as a services provider, to take card payments via 3rd parties.

Be responsible for formalising, managing and reporting on global company risks, ensuring tasks are correctly assigned with relevant focus and priority given to Tribal's highest risks.

Ensure security incidents are effectively managed, utilising system workflows to automate the end-to-end process as much as possible.

Ensure the team schedules, prepares for, and conducts internal audits globally.

Develop and spearhead the enablement of automatic auditing of systems to increase the cadence of technical compliance checks.

Support teams with the identification of relevant legislation, regulations and contractual requirements related to their activities, and maintain an overview of this for reporting and audit purposes.

Be responsible for corporate Business Continuity (BC) and Disaster Recovery (DR) working closely with and managing the Business Continuity and Compliance lead.

Manage and report on Business Impact Assessments across key business activities.

Advise the Platform Engineering and Architecture teams on compliance and contribute to documentation to ensure compliance with the relevant standards.

The Skills you'll have:

ISO 27001:2022 Internal auditor.

Working knowledge of ISO/IEC 27001:2022, ISO 22301:2019 and/or ISO 9001:2015.

Experience of preparing for and supporting ISO and Cyber Essential's external audits.

Information Management System Accreditation.

PCI Assessor.

QSA - Qualified Security Assessor.

Vanta, Secureframe or Drata knowledge.

It would be great if you had:

An understanding of software development processes.

Experience in managing and leading a small team.



What can Tribal offer you?



We offer a range of exceptional benefits to support your wellbeing and work-life balance, including a comprehensive Health Cash Plan, Private Medical Insurance and Employee Assistance Programme, along with a generous parental leave package and the ability to buy or sell holiday each year. We also offer the option of working overseas for up to 8 weeks per year. You'll also have access to E-Learning Opportunities to enhance your skills, Volunteer Days to give back to your community and access to Achievers, our reward and recognition platform, to ensure you can thrive both personally and professionally in a supportive and rewarding environment.



We're committed to creating an environment that enables employees to balance their responsibilities inside and outside of work and encourage and support a range of flexible working patterns for all colleagues. If you need flexibility, apply and discuss your needs with us.



Criminal Records and Security Checks



If you are successful in your application, a security/criminal record check will be required before we can employ you, If, following the check the nature of a conviction is deemed unacceptable, this may lead to an offer of employment being withdrawn.



As an equal opportunity employer, Tribal celebrate diversity and are committed to creating an inclusive environment for all employees. We make sure that our recruitment and selection processes never discriminate based upon any protected characteristics and actively welcome applications from all groups, not least those underrepresented in the tech sector.



Note to all applicants - Tribal reserve the right to close an advertisement to applications ahead of the advertised closure date. For this reason, shortlisting may take place prior to the closing date on some occasions. With this in mind, please do not hesitate to apply early.