Compliance Officer FTC

Overview

Foods Connected is an award winning cloud based software platform that helps retailers and food companies across the world manage their supply chain, quality control and trading and planning management. Our software solutions are currently utilised by 10 of the largest food retailers in the world. We provide tools that help our customers manage their processes in a fast and efficient way and provide real-time visibility and reporting on what is happening in their business.

We recognise that our employees are our most important asset and we value creating a great working environment to ensure our team enjoy coming into the office every day working together and solving problems for our customers. Whether we are in the middle of a fast and intense development sprint, on a Teams call discussing our project statuses or enjoying a game of ping-pong or pool in the office, it is important to us that our employees are happy and delivering the best possible result for our customers.

We're always keen to welcome talented individuals to join our expanding team. So if you're driven, with a passion for developing simple software solutions, creating great user experiences, designing scalable solutions for real business challenges and ensuring customer happiness then we're looking for you!

IS THIS SOMETHING THAT INTERESTS YOU?

This is a 12 month Fixed Term Contract and the role has been designed as an evolution of our existing Compliance Officer position, reflecting Foods Connected's current compliance maturity and near-term transition needs. In the first phase of the role, the Compliance Officer will work closely alongside our current Lead Compliance Officer in a structured shadowing and collaboration model, gaining deep familiarity with Foods Connected's Information Security Management System (ISMS), ongoing ISO 27001 certification obligations, and the active programme of work toward SOC 2 Type II certification.

Upon the Lead Compliance Officer commencing maternity leave, the Compliance Officer will transition to working independently, taking full ownership of compliance operations and reporting directly to the Head of IT Security & Compliance.

Throughout both phases, the role requires a strong understanding of technical controls, policy governance, and the realities of operating in a modern SaaS environment. During the initial collaborative period, the focus will be on knowledge transfer, relationship building, and active contribution to ongoing compliance work streams. In the independent phase, the postholder will take full responsibility for maintaining ISO 27001 certification and driving SOC 2 Type II readiness to successful completion - ensuring continuity, momentum, and rigour across all compliance activity.

The ideal candidate will be based in Derry or Belfast to support closer collaboration with the team. While remote work is possible, a preference will be given to individuals who can work closely with colleagues in person, particularly during key delivery phases or audit cycles.

Note: The following are the primary responsibility groups and percentages are indicative.

Compliance & Framework Governance - 75%

• Operate and evolve the ISO 27001-compliant ISMS, including risk management, internal audit scheduling, and control mapping.
• Lead evidence collection and process development in support of SOC 2 Type II readiness and eventual certification.
• Drive Foods Connected's efforts toward successful achievement of SOC 2 Type II certification in 2026, ensuring all preparatory and operational milestones are met.
• Maintain and improve internal information security policies, standards, and procedures aligned with ISO, SOC 2, and internal risk posture.
• Support internal and external audits, manage remediation actions, and track closure of findings across departments.
• Coordinate regular reviews of policies and documentation with business stakeholders.
• Conduct risk and supplier assessments to support procurement, onboarding, and ongoing vendor due diligence.
• Own and maintain Foods Connected's AI governance framework, ensuring emerging regulatory obligations are understood and acted on.
• Maintain the risk register and issue tracking, ensuring risks are assessed, owned, and remediated in line with FC's risk management framework.
• Own and facilitate the ISMS quarterly meeting and quarterly risk review cycle, including ELT compliance reporting.
• Maintain detailed audit trails of compliance evidence using structured systems.
• Engage and support engineering, Dev Ops, and security teams in the implementation of compliant controls and practices (e.g., access control, change management, incident response).
• Develop, monitor, and maintain key performance indicators (KPIs) to measure and optimise the effectiveness and maturity of the ISMS over time.
• Monitor regulatory trends and translate them into practical guidance for the business.

Cross-functional Collaboration & Enablement - 20%

• Provide compliance advisory support to engineering, product,…