Select which cookies you accept
When you visit this website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the website work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience.
Because we respect your right to privacy, you can choose not to allow some types of cookies. Below is a list of different categories of cookies that may be set and that you can freely change. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.
These cookies are required and must be accepted to use this site.
These cookies collect data about how visitors use this website.
These cookies allow the website to remember choices you make and provide enhanced, more personal features.
These cookies are used to deliver adverts more relevant to you and your interests.
Here at Avado, we believe in people-powered transformation because we know that all transformation starts with people. We are a professional learning organisation that upskills people, uplifts cultures and future‑proofs organisations in a fast‑moving world. We design and deliver interactive learning experiences in data, people, business analysis and marketing including work-readiness programmes, apprenticeships and professional qualifications, many of which maximise UK Government future skills funding. Our connected learning approach combines deep expertise, collaborative learning, scalable technology and award-winning learning design to deliver unrivalled learner experiences for people and organisations who want real change.
Who we need
Keith Harvey, our committed and highly experienced Head of Group Compliance is looking for someone who wants to be part of a versatile team of compliance professionals who drive a commercially compliant mindset across the Avado Group.
You’ll report directly to Keith, supporting and often leading on, strategic and tactical compliance initiatives, including data protection, information security, and the onboarding and assessment of new clients and technology suppliers. You’ll work with all levels within the business, including senior management and deal with complex information security queries. You’ll help to ensure overall compliance is maintained in line with our monitoring plan, ensuring ongoing compliance with ISO27001 information governance, feeding any risks into our Enterprise Risk Management regime.
This is a multi-functional role within Avado which focuses on information security and data protection. The percentage of split will be determined by workload, requirements, and business priorities in each area.
Equally importantly, you will align beautifully with our organisational values, which were defined by our people for our people, clients, learners and partners:
What you’ll do
Research, implement and maintain measures to ensure compliance for ISO 27001, Cyber Essentials Plus, PCI DSS and any other required controls, certifications or regulatory requirements (e.g. financial conduct authority, data protection, …) across the group
Perform internal audits on information security in line with international standards, which includes but not restricted to ISO 27001
Work with internal and external stakeholders providing information security consultancy to ensure security requirements are met
Implement and maintain the information asset register and conduct risk analysis
Work with our Compliance Officer(s), and Data Protection Officer to document information security policies, processes and procedures
Ensure that policies are clearly defined, communicated to the business through agreed channels, reviewed on a regular basis and provide analysis on the effectiveness of the policies and procedures as needed
Ensure training requirements are included in the scope and budget of projects you are involved in and implemented across the group
Research, plan and assist with implementing and operating a Business Continuity Plan (BCP)
Research, plan and assist with implementing and operating a Disaster Recovery Plan (DR)
Maintain, analyse, and monitor cybersecurity threats
Conducting security and data protection assessments with internal business units and external third parties to ensure ongoing security and data protection requirements are met
Working with our commercial teams to complete Security and Data Protection assessments in a timely manner
Managing security incident response and continuous monitoring of effectiveness of the mitigation actions and outcomes
Provide regular reports and updates to the Head of Group Compliance and DPO
Attend and fully participate in team or project meetings
Provide training on use of business tools, systems, and compliance for users with varying levels of knowledge
What we’re looking for
An individual with a strong working knowledge of data privacy laws, information security and industry best practices and how they might impact our business
Ability to prioritise tasks, problem solve, work under pressure, and be a business partner to the organisation ensuring that we balance our compliance and security goals against commercial needs, giving consultative information advice and guidance as necessary
Experience with incident ticketing systems and using automated monitoring tools
Knowledge of Active Directory, proficiency with network hardware, software technologies and a working understanding of Microsoft, Apple, and Linux operating systems
Project management and presentation skills are key
Ability to identify incident trends to elevate as required
Ability to classify information
Experience of conducting information audits
Experience of working in a team environment
Strong oral and written communication skills
Ability to maintain good working relationships with third parties as well as internal stakeholders
What you’ll get
The opportunity to flourish in a growing organisation, with a group of like-minded compliance professionals each of whom takes compliance, information security and data protection very seriously, and who are dedicated to making our functions best in practice and something to shout about with our clients and other key stakeholders in the business.
Plus lots of benefits including:
Holidays – 25 days plus bank public holidays, increasing by 1 day after 2 years and a further day after 4 years.
A day off on or around your birthday, and a birthday gift of your choice.
£30 per month hybrid working allowance.
Discounts at 250+ retailers.
Free coffee from Caffe Nero or a pastry from Greggs, weekly, as well as a free film to stream monthly, AND heavily discounted cinema tickets.
Cycle2Work scheme, even if work is predominantly at home!
Statutory pension and life assurance.
What we call ‘accountable flexibility’ that you can expect from a hybrid working environment, with an office in London and Birmingham to use in line with our business cadence.
Various opportunities to gain an immersive experience into the broad range of Avado products and proposition.
Virtual mindfulness activities on Mondays and Friday.
On-demand access to a professional business / executive coach.
Curated personal development and learning tools, courtesy of Magpie.
Periodic opportunities to give back by mentoring learners on our FastFutures diversity-focused employability programme.
Free access to a virtual GP.
And… just for being here, we offer you a culture that’s created and nurtured by super smart people and underpinned by our Values which guide our thinking, decisions and actions, creating a truly unique place to work. You will also get to be at the forefront of helping a very diverse range of professionals enhance their careers, whether at the early stages or later down the line. You'll enjoy a hybrid working environment with an enviable workspace to use in West London, serious personal development opportunities (well, we are a learning organisation after all), and some rather nice job-related and lifestyle perks. Oh, and one more thing - we're a Great Place to Work™ certified company, and the only commercial learning organisation in the 'large' category that's recognised as one of the UK's Best Workplaces™, something we are rightly very proud of!
And we’re highly inclusive….
Avado is one of those rare places where anyone from anywhere with any background or experience is free to come and do their very best work. We believe in the diversity of thought, as that’s what helps us help our clients and learners – whether investing in their own development, or having their employer invest for them. Equality, diversity and inclusion are values that underpin our success; come and see for yourself!
Our award-winning culture is centred on our values and purpose, balancing the support and structure of an established business, with a pace and adaptive environment more akin to an entrepreunerial start up.
The bottom line is we're all trusted with responsibility and actively encouraged to be the unique individuals we are.
In 2021 we won an award in the Business Culture Awards, and became Great Place to Work Certified.
Group Compliance·UK Remote Working·
Information Security Officer
Loading application form
Already working at Avado?
Let’s recruit together and find your next colleague.