Compliance Manager

Summary

Join Masabi, a global leader in fare payment technology, as their Compliance Manager. Lead the day-to-day delivery of the compliance program across PCI DSS, ISO 27001, and SOC 2. Maintain the compliance calendar, manage evidence collection, and work with internal and external auditors. Develop and enforce policies and procedures, identify control gaps, and partner with engineering and IT. Keep Masabi audit-ready, improve processes, and maintain compliance documentation. Act as the go-to person for compliance questions and support education initiatives. This fully remote or hybrid role (UK-based) requires experience in compliance, audit support, or a related area within a SaaS or tech environment, familiarity with relevant frameworks, strong organizational and communication skills, and proficiency with compliance management systems.

Requirements

• Solid experience in compliance, audit support, security governance, or a related area within a SaaS or tech environment
• Familiarity with PCI DSS, ISO 27001, SOC 2, and regulatory compliance frameworks
• Strong organisational skills with a track record of managing control documentation, audit deliverables, and process tracking
• Excellent communication skills, with the ability to make complex topics accessible to any audience
• Confidence working with tools like compliance management systems, ticketing platforms, and GSuite
• Proactive mindset with a focus on clarity, continuous improvement, and enablement

Responsibilities

• Lead the day-to-day delivery of our compliance programme across PCI DSS, ISO 27001, and SOC 2
• Maintain our compliance calendar and manage evidence collection, documentation reviews, and control testing
• Work closely with internal stakeholders and external auditors to foster smooth, successful audit and recertification processes
• Track and monitor client-specific compliance requirements and contractual obligations, flagging key deliverables and billing impacts
• Develop, maintain, and enforce clear, practical policies and procedures that support security and compliance across Masabi
• Help identify control gaps through risk assessments and coordinate effective mitigation efforts
• Partner with Engineering and IT to ensure policies are embedded in workflows and stay ahead of evolving regulations
• Monitor industry regulatory landscape to ensure we’re always moving ahead of new requirements
• Keep Masabi audit-ready all year round, not just during audit windows
• Coordinate internal pre-audit reviews, manage evidence trails, and guide teams on audit scope and readiness
• Identify ways to improve how we work, from refining processes to introducing smarter automation
• Maintain a well-organised library of compliance documentation, certifications, and key updates
• Act as the go-to person for compliance questions across Masabi, including RFPs, security questionnaires, and customer queries
• Support education and awareness initiatives to embed a culture of proactive compliance
• Work closely with our Security Engineer(s) to align policies with broader risk and vulnerability management efforts

Preferred Qualifications

• Bonus points if you’ve worked directly with auditors or supported external assessments
• You’re self-motivated, comfortable in a remote-first environment, and able to manage your time independently

Benefits

• 25 days of holiday per year plus the option to buy another 5 days pro-rated
• Private Healthcare via AXA, including pre-existing conditions and mental health
• Life Insurance
• Menopause support
• Choice of workstation
• Ability to work for up to 3 months per year from any country in the world (certain limitations)
• Pension scheme
• Training allowance of up to £1000 per year
• ��200 annual allowance for any home office need or improvement
• Enhanced family leave pay
• Cycle to work scheme
• Regular social gatherings with a monthly allowance for each employee
• Fun and collaborative environment with a focus on making a difference in the world