Current roles
Compliance Content Lead
Most people in compliance roles advise, audit, or implement. This role is different. You will own the methodology, content, and guidance that sits at the heart of a platform used by more than 65,000 people across the world.
Help us scale smarter, faster, and with purpose
Since 2005, we’ve helped organisations achieve their goals through simple, sustainable, and scalable information security. What started as a solution to help UK police forces share sensitive data securely has grown into a global SaaS platform, IO – trusted by thousands of businesses worldwide.
We’re growing fast. Backed by private equity investment and with customers across the UK, Europe, the US, and APAC, we’re expanding our team and doubling down on our mission: to set the standard for information security management and deliver compliance confidence through our exceptional people, process, and platform.
That’s where you come in.
About the role
Most people in compliance roles advise, audit, or implement. This role is different. You will own the methodology, content, and guidance that sits at the heart of a platform used by more than 65,000 people across the world.
The ARM methodology, the Virtual Coach, the unified control set, the IO Resilience Score: these are what customers rely on to achieve certification, maintain it, and prove their governance posture to the market. They need someone with the knowledge and judgment to own them properly and keep pushing them forward.
You will define how we represent standards, how we guide customers through them, and how we keep pace as the regulatory landscape shifts. And you will work closely with the product team, not as a subject matter expert who gets consulted occasionally, but as the person who defines the compliance standard the product has to meet.
The role is based in the UK and applicants will require independent right to live and work in the UK.
What you’ll be owning
The unified control set and standards coverage
IO is moving toward a unified controls approach. One coherent framework that maps across standards rather than rebuilding content from scratch every time a new one lands. You’ll own that model. Whether we adopt an off the shelf approach or develop our own, you’ll be responsible for how standards are deconstructed, mapped, and represented within it.
Current priority standards include ISO 27001, ISO 27701, ISO 42001, ISO 22301, Cyber Essentials, NIST CSF, NIST AI RMF, GDPR, EU AI Act, and NIS 2. You’ll monitor what’s coming and make the call on what we support next and how.
Platform content
Everything a customer reads, responds to, or acts on inside the platform sits with you. Control questions, template answers, policy frameworks, risk and asset banks, guidance text. You’ll build it, maintain it, and manage how updates get pushed to customers as standards evolve.
You’ll own our Assured Results Method (ARM), the structured path that takes customers from starting point to certification. You’ll also own Virtual Coach, the in-platform guidance layer. These are two of the most visible parts of the customer experience and directly tied to our first-time certification success rate and we want to expand on.
The IO Resilience Score
We’re building a maturity-based scoring model that assesses how well customers have implemented their controls and gives them an overall resilience posture. You’ll help design the underlying control set, the core of what good looks like for information security, privacy, and AI governance, and define how we assess and score it. This becomes part of how IO demonstrates value beyond certification.
Product input
You’ll work closely with the product team as a compliance and standards expert. When a new standard has workflow requirements the platform doesn’t yet support, that needs to come from you. When a customer journey could be better designed if we understood what auditors actually look for, that insight should come from you.
Professional services alignment
What we deliver through professional services has to be consistent with what’s on the platform. You’ll work with the PS team to close gaps, and where the product could better support how we deliver services, you’ll surface that.
External profile
IO is building its position as the reference implementation for resilient governance. That requires credible voices talking publicly about what good looks like. You’ll be one of them, contributing to thought leadership, the annual State of Information Security Report, and engaging with customers, partners, and the broader community.
What you bring
Must-haves
Compliance depth across multiple standards.
ISO 27001 is non-negotiable. Solid working knowledge across at least two or three others, such as GDPR, NIST, NIS 2, or AI-related standards, is expected. You’ve done this in practice, not just in theory. You know what auditors look for because you’ve been in those rooms.
The ability to simplify without dumbing down.
The whole job is taking dense, technical regulatory material and making it clear, structured, and usable. You need to be genuinely good at this, in writing, in video, in e-learning, and in conversation.
A builder’s mindset.
There’s no complete playbook here. The unified controls model is a direction, not a finished thing. The Resilience Score is an idea we’re developing. You’ll need to set direction, make decisions, and build rather than wait to be told what to do.
Strong prioritisation.
There’s more to do in this role than any one person can do at once. You’ll need to be honest about trade-offs, manage your own backlog clearly, and communicate well when things have to wait.
Comfort with AI tooling.
There’s a real opportunity to accelerate content production here with AI, covering drafting, mapping, and gap analysis. We want someone who leans into that and builds quality controls to support it.
Project management rigour.
Multiple workstreams, shifting priorities, dependencies across product, PS, and customer success. You’ll need to hold those threads without dropping them.
Why you’ll love it here
- A fast-paced, growing business where you can move quickly and make a real difference.
- A team that values collaboration, ownership, and smart experimentation.
- A product that solves meaningful problems and gets real results for customers.
- A supportive environment where you’ll be trusted to lead and encouraged to grow.
This is a standout opportunity for someone who wants to take ownership, build at pace, and play a key role in scaling a SaaS business with a purpose. Sound like you? Let’s talk.
