Quality & Compliance Officer

JOB DESCRIPTION Job Title: Quality & Compliance Officer Responsible to: Chief Financial Officer (CFO) Purpose of the Role Coordinate and manage the organisation’s global quality management system, ensuring ongoing compliance with ISO 9001:2015 and consistent implementation of policies and procedures across all locations. Act as the company’s Data Protection Officer (DPO), serving as the primary point of contact for data protection matters and supporting compliance with applicable data protection regulations. Maintain and develop the organisation’s Information Security Management System (ISMS), ensuring alignment with ISO/IEC 27001 standards and supporting continuous improvement. Main Responsibilities 1. Quality Management Develop and maintain audit schedules to ensure compliance with ISO 9001:2015 requirements. Coordinate and deliver internal audits across all locations and departments. Analyse customer complaint data to identify risk areas and prioritise targeted audits. Review audit findings and work with management to implement corrective and continuous improvement actions. Coordinate the development, review, and standardisation of Quality Procedures (QPs) across the organisation. Deliver auditor training and provide updates to support audit effectiveness and compliance. Maintain and control quality documentation, including Quality Procedures (QPs) and Cellhire Forms (CHFs). Support managers in reviewing and maintaining Risk Registers and Quality Objectives. Use audit data, reporting tools, and customer feedback to identify training and development needs. Participate in global Customer Service meetings and follow up on agreed actions. 2. Information Security Management System (ISMS) Plan and maintain audit schedules to support compliance with ISO/IEC 27001:2013 standards. Review audit outcomes with stakeholders and track completion of corrective actions. Maintain and review security policies and documentation, including those related to the Atlas programme. Work with the Technology Director to support monitoring, measurement, evaluation, and testing of systems. Ensure changes, improvements, and corrective actions are tracked and documented. Coordinate Security Steering Group (SSG) meetings and follow up on actions. 3. Data Protection & Compliance Act as Data Protection Officer (DPO), supporting organisational compliance with EU GDPR (2018) and the Data Protection Act 2018. Maintain and review data protection policies, procedures, and documentation. Apply ISO/IEC 27001 best practices to strengthen data protection controls and processes. Promote awareness and support adherence to data protection requirements across the business. 4 . Any additional duties within the level of competence as requested by the Directors and Managers of the company.