Your role at Veezu
The Information Governance Manager will lead on all aspects of Information Governance and Security, ensuring compliance with legal, regulatory, and industry best practices.
Reporting directly to our Head of IT, you will play a key role in safeguarding Veezu's data assets and promoting a culture of information security across the organisation.
Who are Veezu? Veezu is the UK's fastest-growing taxi and private hire technology platform, operating across hundreds of UK towns and cities. We're a tech-driven, on-demand mobility service that supports hyper-local communities, helping them thrive and achieve more.
What you'll do:
Information Governance Leadership: Act as the subject matter expert for information governance, including GDPR, ISO27001, PCI-DSS, and data protection laws. Develop and implement strategies, policies, and processes to ensure compliance across all departments. Advise senior leadership and stakeholders on information security best practices and risk management.
Compliance & Risk Management: Lead audits and reviews to monitor compliance and identify improvements. Oversee the Data Security and Protection Toolkit (DSPT) submissions and related action plans. Support the DPO in managing data breaches and conducting Data Protection Impact Assessments (DPIAs).
Training & Awareness: Develop and deliver training programmes to ensure staff understand their information governance obligations. Promote a strong culture of information security through regular communications and engagement.
Collaboration & Stakeholder Management: Work with external partners, regulators, and auditors to maintain compliance and certifications. Provide expert input into commercial contracts and supply chain agreements to ensure robust information security.
What you'll need Strong experience in Information Security Management, including governance, compliance, risk, PCI-DSS, and ISO27001. Proficiency in GDPR compliance and related regulatory frameworks. Security compliance qualifications (CISSP, CISA, CISM, or CRISC preferred). Proven ability to manage audits, develop policies, and lead training initiatives. Excellent communication, organisation, and problem-solving skills. A collaborative approach with the ability to adapt to a dynamic environment.
Where you'll be
This is a hybrid role based at our Cardiff HQ, Hodge House, with 3 days onsite and 2 days remote. #J-18808-Ljbffr
Reporting directly to our Head of IT, you will play a key role in safeguarding Veezu's data assets and promoting a culture of information security across the organisation.
Who are Veezu? Veezu is the UK's fastest-growing taxi and private hire technology platform, operating across hundreds of UK towns and cities. We're a tech-driven, on-demand mobility service that supports hyper-local communities, helping them thrive and achieve more.
What you'll do:
Information Governance Leadership: Act as the subject matter expert for information governance, including GDPR, ISO27001, PCI-DSS, and data protection laws. Develop and implement strategies, policies, and processes to ensure compliance across all departments. Advise senior leadership and stakeholders on information security best practices and risk management.
Compliance & Risk Management: Lead audits and reviews to monitor compliance and identify improvements. Oversee the Data Security and Protection Toolkit (DSPT) submissions and related action plans. Support the DPO in managing data breaches and conducting Data Protection Impact Assessments (DPIAs).
Training & Awareness: Develop and deliver training programmes to ensure staff understand their information governance obligations. Promote a strong culture of information security through regular communications and engagement.
Collaboration & Stakeholder Management: Work with external partners, regulators, and auditors to maintain compliance and certifications. Provide expert input into commercial contracts and supply chain agreements to ensure robust information security.
What you'll need Strong experience in Information Security Management, including governance, compliance, risk, PCI-DSS, and ISO27001. Proficiency in GDPR compliance and related regulatory frameworks. Security compliance qualifications (CISSP, CISA, CISM, or CRISC preferred). Proven ability to manage audits, develop policies, and lead training initiatives. Excellent communication, organisation, and problem-solving skills. A collaborative approach with the ability to adapt to a dynamic environment.
Where you'll be
This is a hybrid role based at our Cardiff HQ, Hodge House, with 3 days onsite and 2 days remote. #J-18808-Ljbffr
