Job Specifications
About Us
We are a fast-growing software company operating across the UK, Europe, and the United States, serving luxury spas, bathhouses, hotels, and leisure businesses. As we continue to expand internationally, we are strengthening our compliance posture, maturing our Information Security Management System (ISMS), and preparing for several new regulatory frameworks.
Role Overview
We are seeking a proactive, hands-on Compliance Manager to take ownership of our full ISMS and drive continuous improvement across our security, privacy, and fiscal compliance programs. This role is ideal for someone who enjoys shaping processes, working collaboratively across teams, and strengthening an existing compliance function.
The successful candidate will bring strong experience with ISO 27001, exposure to U.S. data security practices (including HIPAA), and knowledge of European fiscal compliance frameworks. Experience with NF 525 certification or French fiscalisation processes is highly desirable.
Key Responsibilities
Own and maintain the full Information Security Management System (ISMS), ensuring ongoing alignment with ISO 27001 and driving continual improvement.
Lead internal audits, risk assessments, corrective actions, and readiness activities for ISO 27001 surveillance and recertification.
Develop and manage policies, procedures, and documentation across all areas of security, privacy, and compliance.
Oversee compliance with U.S. data security and privacy requirements, supporting the organisation’s roadmap toward HIPAA compliance next year.
Manage European fiscal compliance obligations, including:
Leading the organisation toward NF 525 certification in France.
Monitoring fiscal requirements across other European markets.
Partner closely with Engineering, Operations, Finance, and Customer Success to embed compliance into business processes.
Conduct vendor, customer, and internal compliance reviews; manage responses to due-diligence questionnaires and RFP security requirements.
Support incident response planning, testing, and continuous refinement.
Provide training and awareness programs to build a strong compliance culture.
Act as the internal subject matter expert on security, privacy, and fiscal compliance topics.
Stay updated on relevant standards, regulations, and emerging threats.
Required Skills & Experience
Proven experience managing an ISO 27001 ISMS end-to-end.
ISO 27001 Lead Implementer, Lead Auditor, or equivalent training/certification.
Practical knowledge of U.S. data security practices; familiarity with HIPAA
Experience with European fiscal compliance, ideally including exposure to the NF 525 fiscalisation process.
Strong understanding of compliance frameworks, risk management, and internal control systems.
Excellent documentation skills and attention to detail.
Ability to work cross-functionally and influence stakeholders at all levels.
A problem-solver with a can-do attitude, comfortable rolling up sleeves to build and improve processes.
Comfortable in a fast-paced, scaling environment.
Nice-to-Have
Experience in SaaS, hospitality, or payments is advantageous.
Knowledge of GDPR, SOC 2, PCI DSS, or similar frameworks.
Experience with security tooling, audit platforms, and policy management systems.
What We Offer
Competitive salary (£45K–£70K depending on experience).
Opportunity to shape a rapidly maturing compliance function.
A supportive team and a culture that values initiative, ownership, and continuous improvement.
Exposure to international regulatory frameworks and the chance to lead significant certification projects.
We have 3 furry colleagues, Sooty, Hugo, and Pax.
Weekly team lunch.
Hybrid working.
Vitality health and life insurance.
25 days annual leave plus local bank holidays.
About the Company
Spa, leisure, and hospitality management doesn't need to be complicated. TRYBE is your cloud-native all-in-one booking solution to help you modernise and level up your business operations.
Designed by the industry, for the industry, our system integrates seamlessly with your existing software leading to greater efficiency for your team and a greater experience for your guests.
Why TRYBE?
-Increase your revenue
-Access TRYBE from any device, anywhere
-Automate sales and inventory management
-Use your team's live availabi...
Know more