Head of Compliance

div p The AI-powered OS for beauty, wellness and self-care /p h3 About the role /h3 p Reports to: VP of Security, IT and Compliance /p p We’re looking for someone to own compliance end to end at Fresha. We’re already HIPAA and ISO27001 certified, we’re heading into a PCI DSS audit shortly, and later this year we’ll have GDPR and SOC 2 Type II coming up. The role is based in our dog friendly office in London: The Bower, 207 122, Old Street, London EC1V 9NR. /p h3 What you’ll own /h3 h3 Audits and certifications /h3 ul li Run the PCI DSS audit to completion, then GDPR and SOC 2 Type II this year /li li Serve as the main point of contact for external auditors scoping, evidence, walkthroughs, findings /li li Maintain HIPAA and ISO 27001 compliance between recertifications /li /ul h3 Compliance operations /h3 ul li Quarterly access reviews across in scope systems /li li Manage Sprinto: ensure controls are covered, failures are triaged quickly, and evidence is cu...