Job Description

Job Title: Compliance Executive (12-month contract)

Job Location: Haywards Heath

Reports to: Ecommerce Governance Manager

Responsible for: Not applicable

Job Holder: Vacant/New

Department: Finance and Performance

Job Purpose

The Compliance Executive is responsible for providing supportand assistance to the Ecommerce and Information Security functions with their strategic objectives and their day-to-day operations, as well as ongoing project deliverables. The role will assist with incremental process improvement, simplification and deployment of related tools and procedures for both functions.

Principal Accountabilities:

  1. Project Work (20%)
  • Work with the Ecommerce Governance Manager and Information Security Officer to assist with the successful completion of strategic projects
  1. Systems, Process and Data Flow mapping (15%)
  • Work with the Information Security Officer and Ecommerce Governance Manager to capture, describe and document Sightsavers’ Information and Ecommerce processes and data flows
  • Assist in continual process review and development for Sightsavers’ Information Security and Ecommerce processes
  1. Online FraudDetection, Prevention and Reporting (15%)
  • Work with the Ecommerce Governance Manager to define Sightsavers’ online fraud baseline
  • Actively monitor online donation systems for early warning of suspected fraudulent donation activity
  • Analyse transaction data to generate regular reports on online fraudulent activity
  • Assist in the development and deployment of existing and new online fraud detection and prevention measures
  • Assist in continual process review and development for online fraud detection and prevention
  1. Systems, Data and Compliance Auditing (15%)
  • Work with Information Security Officer and Ecommerce GovernanceManager to define Sightsavers’ relevant compliance requirements for its systems, data and processes
  • Assist in the maintenance of Sightsavers compliance status against relevant legal, industry and regulatory frameworks
  • Assist in continual process review and development for Sightsavers compliance processes
  1. Configuration Management Database (CMDB) Loading (10%)
  • Work with the Information Security Officer to populate Sightsavers’ Configuration Management Database with accurate and up to date information on Sightsavers’ infrastructure
  • Maintain the accuracy of Sightsavers’ CMDB data
  1. Penetration Testing, Log Review and Analysis (10%)
  • Work with the Information Security Officer and Ecommerce Governance Manager to define Sightsavers’ scope for Penetration Testing
  • Using the appropriate resources maintain a process of regular Penetration Tests – both internal Sightsavers systems and external supporter facing websites
  • Report on any findings from this process
  1. Industry Analysis (5%)
  • Keep up to date with relevant Information Security / Ecommerce industry developments
  • Research and write appropriate reports/documents on existing, new and emerging Information Security / Ecommerce industry developments
  1. Administration and other duties (10%)
  • Attend relevant team, department and organisation meetings as required

The principle accountabilities are not meant to be an exhaustive list of tasks. The need for flexibility is required and the job holder is expected to carry out any other related duties that are within the employee's skills and abilities whenever reasonably instructed.

Jobholder Entry Requirements - the essential knowledge, skills and behaviours required

Knowledge (Education & Related Experience):

  • Ideally educated to degree level, in a relevant area (technical, legal, financial etc.) or demonstration of equivalent experience.
  • Experience within a relevant organisation (legal, finance etc.) or department (compliance)
  • Technical knowledge ofone or more information systems platform (web, database systems, servers etc.)
  • Knowledge of or exposure to one or more regulatory frameworks (ISO, PCI-DSS, Data Protection Act etc.)
  • Knowledge of MS Office and general PC competencies.

Skills (Special Training or Competence):

  • Strongly numerate, ideally in financial, accounting or bookkeeping areas
  • Analytical approach with excellent attention to detail
  • Technical understanding of Information systems
  • Effective time management skills
  • Strong written and verbal skills
  • Ability to inspire confidence of internal stakeholders.
  • Ability to work with minimal supervision, prioritise work to meet client and sponsor deadlines by working well with other team members.
  • Ability to troubleshoot, multitask,manage deadlines, work independently andtake initiative.
  • An understanding of and commitment to equality of opportunity for disabled people.

Core Behaviours:

  • Assist in delivery of Sightsavers compliance requirements
  • Communicating & Influencing
  • Information Management
  • Learning & Team Working
  • Delivery and Implementation
  • Change & Improvement

Key Relationships

Internal

  • Ecommerce Governance Manager
  • Information Security Officer
  • ICT, UK & International Fundraising, Policy/PS2, Programmes, Finance Planning & Operations

External

External Vendors: donation systems software vendors, merchant account vendors, social media platform providers, web applications vendors, web platform hosting vendors.

Date as of: November 2015

1