Zero-emission solutions for cities. Human-centred, intelligent design - to revitalise public transportation.
At Arrival, our team is creating best-in-class electric vehicles using a radical new method of design and production. We work with some of the world's leading businesses and governments to achieve our goal of redefining mobility and transport ecosystems, transforming how people and goods travel and enhancing urban environments for all communities.
Innovation, rapid development and testing help us to push the boundaries. Our New Method takes our portfolio of patented technologies created in-house, and combines it with assembly in Arrival Microfactories. It’s a groundbreaking approach, leading to products with maximum functionality, peak efficiency, and an elevated experience – at a much more competitive price than other electric vehicles, and even fossil fuel vehicles.
At Arrival, our team is creating best-in-class electric vehicles using a radical new method of design and production. We work with some of the world's leading businesses and governments to achieve our goal of redefining mobility and transport ecosystems, transforming how people and goods travel and enhancing urban environments for all communities.
Innovation, rapid development and testing help us to push the boundaries. Our New Method takes our portfolio of patented technologies created in-house, and combines it with assembly in Arrival Microfactories. It’s a groundbreaking approach, leading to products with maximum functionality, peak efficiency, and an elevated experience – at a much more competitive price than other electric vehicles, and even fossil fuel vehicles.
Join Arrival's Infosec team working closely with the Information security compliance manager and the rest of the team.
Join a team who are really passionate and interested in what they do, and help to further develop the structure and procedures around their processes within Arrival.
At Arrival we want all of our employees to feel comfortable bringing their passion, creativity and individuality to work. We value all cultures, backgrounds and experiences, as we truly believe that diversity drives innovation. Join our mission to bring better, more sustainable transportation to communities around the world.
About the role
Policy drafting and annual reviewISMS maintenance and support of ISO 27001 auditsSubmit timely PCI attestationsTake part in supplier selection for security technologies and servicesLiaise and advise with all areas of the business and technical teams on Information Security compliance mattersAdvise and support the supplier, software and services assurance programmeConduct Information Security due diligence audits of suppliers Conduct Risk Assessments on suppliers, projects and programmes and update and maintain the risk logAdvise and support projects on Compliance topicsLiaise with Risk and Compliance teams and other corporate functions that require Information Security inputSupport SOX compliance team on Information Security topicsMaintain the critical assets and suppliers list Input into and review contracts for security requirements, both on suppliers and for Arrival customersCover for the Training & Awareness Specialist, as requiredManagement of GRC toolingAbout you
We understand you can't necessarily tick every box but we would love if you have some of the following:Organisation (self) and prioritisation of own workAbility to work independentlyAbility to communicate with all levels of the business in simple to understand language (both written and verbal)Ability to listen to othersTeamworkCommercial AwarenessProblem SolvingInformation Security Policy draftingAll aspects in achieving ISO 27001 Certification1st and 3rd party Information Security audits (facilitating audits on Arrival’s Information Security & arranging and conducting audits on suppliers)Information Security Risk AssessmentThreat Modelling/AnalysisS/W Licence Management & ComplianceConsultancy for Information SecurityInformation Assurance and ComplianceRequirements of PCI DSSOffice IT (Gmail and O365), including Word, Excel, Powerpoint and equivalent applicationsAn understanding of: Applicable Regulations e.g. GDPR, CCPA, etc. and Sarbanes Oxley ActRecords ManagementNice to have: a second language