Come shape the future of education with us.
We are Compass - smart school management in one connected platform. We believe that time spent in the classroom should be for learning and teaching.
Our two co-founders John and Lucas met over a team lunch and while chowing down on their cafeteria sandwiches they bonded over their unapologetically nerdy love for education technology. After months of white-boarding and long days spent writing thousands of lines of code, Compass 1.0 came to life in 2009 in Lucas’ parents' garage.
Fast forward a decade - it’s no longer just John and Lucas eating sandwiches at the lunch table. Our school management ecosystem is now used in more than 2,000 schools across Australia and beyond. We’re joined by over 200 members of the Compass team, delivering smart school management solutions around the world.
About the Role
Reporting to the CFO, the Compliance Specialist will be crucial in ensuring that Compass adheres to regulatory requirements, industry standards, and internal policies related to Information Security.
The Compliance Specialist will work closely with IT teams and other stakeholders to monitor, evaluate, and improve the organisation's security practices and compliance posture.
Responsibilities & Duties
- Oversee compliance reporting for ISO 27001 and PCI-DSS including:
- assisting in the planning, execution, and follow-up activities of compliance audits & investigations.
- conducting & monitoring corrective actions to address identified non-compliance issues.
- Conduct regular monitoring to ensure adherence to applicable laws, regulations, and internal policies, including reviewing processes, procedures, and practices within Compass to identify any areas of non-compliance to do with its product and technology activity.
- Collaborate with other internal departments to identify and assess potential compliance risks and vulnerabilities, including being the first point of contact for Support data security queries.
- Track and report on compliance metrics, providing regular updates to senior management and stakeholders.
- Monitor and analyse changes in relevant laws, regulations, and industry standards to ensure ongoing compliance.
- Assist in the development and maintenance of compliance-related documentation, such as policies, procedures, and guidelines.
- Help in the design and execution of compliance training programs to educate employees on security best practices and regulatory obligations.
- Stay abreast of emerging trends and developments in technology security compliance to proactively address potential risks and challenges.
- Promoting compliance and risk management best practice throughout the company.
- Supporting and enabling domestic and international growth, including researching legal, privacy and compliance issues in existing and new markets.
- Researching and keeping up to date with legal issues across diverse jurisdictions, reviewing legal documentation, and ensuring up-to-date corporate information.
About You
You have:
- A minimum of 2 years of experience in a similar role, ideally within the IT Sector.
- A strong understanding of compliance frameworks and methodologies, including the ability to interpret and apply regulatory requirements to organisational policies and procedures.
- In-depth knowledge of cybersecurity laws, regulations, and industry standards, with familiarity of cybersecurity risk management principles and practices.
- The ability to work autonomously as well as collaboratively in a team.
- High ethical standards and dedication to confidentiality.
- The ability to competing priorities in a fast paced changing environment.
- Excellent verbal & written communication skills.
What’s in it for you?
- Meaningful work in a rewarding industry that allows you to contribute to a mission that you believe in
- Flexible working culture - hybrid working environment
- Learning & Development opportunities - we want you to grow and get the most out of your role!
- Parental Leave Program for both primary and secondary carers
- 24/7 access to our Employment Assistance Program (EAP) through the means of face-to-face, livechat and phone support
Compass is proud to be an equal opportunity employer. We embrace and celebrate diversity and are committed to creating an inclusive environment for all employees.
Prior To Commencing Employment, You Require:
- a valid Employee Working With Children Check
- a satisfactory National Police Check
- verification of unrestricted work rights in Australia, eg citizenship, passport, or birth certificate