Risk & Compliance Manager

The Risk and Compliance Manager will have the following accountabilities

Strategy, Policy & System Development

• Develop, together with senior management, a comprehensive strategy that aligns with the company’s business objectives and risk tolerance.
• Create and update policies, procedures and systems in accordance with regulatory changes and best practices.

Risk Management

• Identify, assess, and prioritize risks across various business functions.
• Implement risk mitigation strategies and monitor their effectiveness.
• Provide regular risk reports and analysis to management.
• Prepares the management review for information security.
• Stay updated on relevant laws, regulations, and industry standards.

Incident Response and Investigation

• Develop incident response plans and coordinate response efforts in case of RC-related incidents.
• Conduct investigations into compliance violations or breaches.

Certification

• Management of the ISMS of all ISO certifying PNO group subsidiaries
• Management of the certification calendar.
• Setup and coordinate robust internal auditing cycles.
• Assisting entities with initial certification, check-ups and external
• Ensure groupwide alignment and compliance with certification processes, audit standards and best practice

Regulatory & Legal

• Monitoring PNO Group’s compliance with laws and regulations (in collaboration with the legal department).
• Monitoring of shutdown, follow-up & execution of NDAs, as well as central archiving.
• Responsible for ensuring that PNO group complies with data protection laws and regulations (GDPR).
• Monitor the organization’s data processing activities to ensure they adhere to relevant legal requirements.
• Guidance and advice to the organization, its employees, and its partners regarding data protection matters.
• Conducting DPIAs for high-risk data processing activities.
• Work closely with the organization’s IT team to ensure that appropriate technical and organizational measures are in place to protect personal data from breaches and unauthorized access.

Training and Awareness

• Organize training sessions and awareness programs to educate employees about all relevant aspects such as information security, regulatory compliance and certification requirements.

PNO Consultants is a successful pan-European innovation and funding consulting firm with over 35 years of experience. We are an open team from a wide range of disciplines all with a common goal: to support private and public organizations in their innovation processes and in identifying funding programs and obtaining funding for research, development, and innovation.

Strong in the network: PNO Consultants is part of PNO Group, one of the largest consulting companies for publicly funded research and innovation projects