Cyber Security Compliance Analyst

Cyber Security Compliance Analyst – Department: Global IT • Employment Type: Permanent - Full Time • Location: UK • Reporting To: Douglas Frank

The Compliance Analyst strengthens SATS' cybersecurity posture by turning regulatory and industry requirements into clear, enforceable policies and day‑to‑day practices. The role partners closely with Security Architecture to align SATS policies and standards with legal, regulatory, and benchmark expectations; executes enterprise compliance assessments; prepares regulatory submissions (e.g., ISO/IEC 27001, PCI DSS, NIS2); and coordinates evidence and interviews for audits. This analyst also manages the ongoing enterprise‑wide cybersecurity training program and, when required, directs the workload of consultants supporting this compliance "tower." The focus is practical compliance: prove it, document it, and make it stick across the enterprise.

• Collaborate with Security Architecture to develop, review, and align SATS cybersecurity policies and standards with legal, regulatory, and industry benchmarks.
• Conduct assessments across the enterprise to ensure adherence to SATS cybersecurity policies and standards.
• Prepare and submit reports/attestations to regulatory bodies and schemes (e.g., ISO/IEC 27001, PCI DSS, NIS2) to demonstrate compliance.
• Collaborate with and, when needed, manage workload and direction of consultants engaged within the Compliance function.
• Deliver and manage an ongoing enterprise‑wide cybersecurity training program.
• Coordinate with internal/external auditors of enterprise security capability, managing requested interviews and artifact/evidence requests.

• Bachelor's degree in Information Security, Information Systems, Compliance/Law, or related discipline; equivalent experience considered.
• Relevant certifications preferred (e.g., ISO 27001 Lead Auditor/Implementer, CISA, CISSP, PCI ISA).
• 3-5 years in cybersecurity compliance, audit, or policy governance within a regulated or standards‑driven environment.
• Hands‑on experience conducting compliance assessments and coordinating audits.
• Experience preparing submissions for certifications/regulators (e.g., ISO 27001, PCI DSS, NIS2).
• Background partnering with Security Architecture and cross‑functional teams (IT, Legal, HR, Internal Audit).
• Experience designing and delivering security awareness/training at enterprise scale.
• Exposure to managing or directing external consultants.

Safety

• Always look out for our own and each other's safety.
• Proactively identify safety risks, hazards and unsafe behaviours promptly and courageously.
• Comply with all relevant safety regulations and standards at all times.
• Learn from mistakes and share that learning.

Customer Focus

• Delight customers by actively anticipating their needs, concerns and preferences.
• Offer alternative "yes" solutions to "no" situations.
• Deliver service excellence and always aim to exceed customer expectations.

Respect

• Appreciate everyone's background, cultural values and opinions at all times.
• Actively listen and understand other's intent and point of view, especially during disagreements.
• Build trusting relationships, demonstrate empathy and care for others.

Excellence

• Always do the right thing. Do it right the first time.
• Demonstrate extreme ownership: See it, Own it, Solve it.
• Adopt a growth mindset: keep learning, stay agile, be resilient.
• Set high expectations, embrace innovation and practice continuous improvement.

Teamwork

• Prioritise SATS Group's interests over one's own and department needs.
• Proactively share resources, ideas and information constructively.
• Build on each other's strengths and ideas to achieve win-win outcomes.