Security, Compliance and Regulatory Project Manager - FTC

Salary: £50,000 Pro Rata

Work Life Balance: Northampton/Hybrid

Role Type: FTC - up to 9 months

Candidate Journey: Our goal is to reply to applications within 3 working days. Additionally, we make sure to acknowledge, evaluate, and respond to all applications as a way of showing our appreciation for your time and effort in applying to us.

Interview Process: TBC

At Staysure Group, we are on an ambitious growth journey to enhance customer experiences, empower our colleagues, and drive sustainable business success across multiple brands. To achieve these goals, we have aligned over 50 transformation initiatives under five strategic pillars:

1. Growth – Core, Challenger, Comparison & Partnership brands
2. Product, platform, and customer journey transformation
3. Customer and employee operations transformation
4. Security, compliance, and regulatory transformation
5. Business optimisation

The Group’s Transformation Function is responsible for realising these strategic objectives through the design, delivery, and management of the Group Transformation Portfolio. We work cross-functionally with experts from Technology, Product, Finance, and other business areas to deliver best-in-class outcomes.

The Role:

The Security & Compliance Project Manager will be responsible for leading the end-to-end delivery of security and compliance transformation initiatives across the Staysure Group.

Reporting to the Security & Compliance Portfolio and Programme Manager, this role will work closely with key trading stakeholders to ensure the successful design, development, and implementation of regulatory, security, and compliance-driven projects.

This person must bring a delivery-focused approach to compliance priorities, turning hypotheses into structured initiatives and managing them through idea, discovery, design, and delivery.

The role requires extensive experience in UK, EU, and global compliance and regulatory agendas, including but not limited to:

• GDPR (General Data Protection Regulation)
• Consumer Duty
• FCA regulations
• PCI-DSS (Payment Card Industry Data Security Standard)
• Operational Resilience
• Third-Party Risk Management
• Other key security and compliance frameworks

What will you do?

• Lead the end-to-end management of security and compliance projects, ensuring initiatives align with regulatory requirements, business objectives, and risk frameworks.
• Develop and manage a security and compliance transformation roadmap, identifying priorities and ensuring projects are delivered on time and to regulatory standards.
• Ensure that security, data protection, and compliance frameworks are fully embedded within transformation initiatives across the business.
• Collaborate with legal, risk, IT security, and operational teams to ensure compliance with UK, EU, and global regulations.

• Provide subject matter expertise in regulatory compliance and risk management, supporting teams to implement best-in-class security and compliance practices.
• Work with stakeholders to identify gaps in compliance and develop remediation plans to address regulatory risks.
• Ensure GDPR, Consumer Duty, PCI-DSS, and FCA compliance are considered at every stage of product, platform, and service development.
• Oversee third-party compliance management, ensuring partners and vendors align with regulatory and security standards.

• Engage with senior business leaders and regulatory bodies to provide updates on compliance initiatives and project progress.
• Act as the key point of contact for security and compliance project delivery, ensuring clear communication, governance, and risk management.
• Work cross-functionally with technology, legal, risk, finance, and operational teams to ensure seamless integration of compliance measures.
• Establish and monitor key compliance metrics, ensuring continuous improvement in regulatory adherence and security measures.

• Lead projects that enhance the resilience of business operations, ensuring the Group meets FCA Operational Resilience requirements.
• Identify potential security threats and compliance risks, developing proactive strategies to mitigate business exposure.
• Support the business in achieving and maintaining key security certifications and regulatory approvals.

Essentials:

• Extensive experience in security, compliance, and regulatory project management, preferably within the financial services or insurance sector.
• Strong understanding of UK, EU, and global compliance regulations, including GDPR, Consumer Duty, FCA, PCI-DSS, and Operational Resilience.
• Proven ability to translate regulatory requirements into practical, scalable business initiatives.
• Experience leading complex, cross-functional security and compliance projects, from discovery to delivery.
• Strong stakeholder management skills, with the ability to engage and influence senior executives, regulators, and third-party partners.
• Knowledge of risk management, data protection, and cyber security frameworks.
• Familiarity with third-party compliance and supplier risk management.
• Excellent project management, governance, and reporting skills.

Bonus skills you may pack in your suitcase:

• Professional certifications such as CIPP/E (Certified Information Privacy Professional – Europe), CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), or PRINCE2.
• Experience with ISO 27001, NIST, or other security frameworks.
• Knowledge of AI and automation in compliance processes.
• Experience in agile delivery and product-led transformation approaches.

We’re assembling a diverse team, where skills, not checkboxes, reign supreme, regardless of race, religion, sex, sexual orientation, gender identity or disability.

Staysure Group welcomes all new starters with open arms, providing training, development opportunities, and great benefits.