• Contribute to the Integrated Management System (IMS) in accordance with ISO 27001 and ISO 9001 • Implement and further develop relevant IT compliance standards • Support internal and external audits • Develop, maintain and improve policies, processes and documentation • Strengthen our data protection organization • Assist in the creation and delivery of training and awareness campaigns

• You'll take ownership of a diverse portfolio of trusts and estates, acting as the trusted adviser and primary point of contact for clients, trustees and professional intermediaries. • Manage a portfolio of UK trusts and estates, delivering a first-class client experience. • Review and oversee trust tax returns and annual compliance obligations. • Review trust accounts and ensure all reporting requirements are met accurately and efficiently. • Support Partners and Directors on trust planning, inheritance tax planning and wider private client advisory projects. • Manage trust account administration. • Build and nurture strong relationships with clients and third-party advisers. • Coach, mentor and develop junior team members, helping them grow their technical and commercial skills. • Identify opportunities to add value and deliver proactive advice that makes a genuine difference to clients.

• Provide customer support across an omni-channel environment, including inbound phone calls, live chats, email, and back-office tickets, ensuring timely and accurate resolution. • Guide users through the PCI-DSS compliance process, delivering clear, step-by-step instructions to maintain regulatory and security standards. • Assist customers in accessing, navigating, and troubleshooting the online platform, ensuring issues are addressed with minimal disruption to operations. • Demonstrate strong analytical and problem-solving skills by leveraging available knowledge bases, tools, and resources to independently resolve complex issues. • Prioritize first-contact resolution by efficiently collecting, verifying, and applying the necessary information to address inquiries. • Proactively identify and communicate opportunities to streamline processes, recommend improvements, or escalate trends that impact efficiency or compliance. • Manage workload effectively and work independently without direct supervision, maintaining accountability for productivity and accuracy. • Handle escalations and difficult conversations with professionalism, focusing on resolution and adherence to company policies. • Ensure all customer interactions are documented thoroughly and accurately in internal systems, following established protocols and compliance requirements. • Consistently achieve or exceed performance metrics, service level standards, and quality expectations across all support channels.

Role Description Most compliance engineers gather requirements and hand them to engineering. This is not that role. Terzo processes some of the most sensitive commercial data in the enterprise world including contracts, financials, vendor relationships, legal obligations for Fortune 500 customers who expect SOC 2, ISO 27001, CMMC, and GDPR compliance as table stakes. As the platform scales and our AI systems operate with increasing autonomy, compliance can't be a gate that sits outside engineering. It has to be built into the infrastructure by someone who can build infrastructure. You will interpret and implement regulatory frameworks by writing code, building automation, configuring cloud security controls, and standing up continuous monitoring systems. Half your time is building. Half your time is managing compliance operations. This is a builder-first role. Qualifications - 5+ years of experience spanning both software engineering and compliance/security where you've written production code and navigated regulatory frameworks. - Deep understanding of enterprise compliance frameworks (SOC 2, ISO 27001, CMMC, GDPR, NIST 800-53) and how they translate into engineering controls. - Proficiency in Python or similar scripting languages, with experience building automation for compliance workflows. - Hands-on experience with cloud security configuration and infrastructure-as-code (Terraform, Azure Policy, AWS Config, or similar). - Comfort interpreting ambiguous regulatory requirements and making pragmatic engineering decisions about how to implement them. - Understanding of cloud infrastructure and distributed systems well enough to assess where compliance gaps live. - Clear communication that bridges security, engineering, and business stakeholders where you can explain a control to an auditor and implement it the same day. - High ownership mentality - you don't file tickets for compliance gaps, you close them. Requirements - Prior work in a hybrid engineering/compliance role where you both defined and implemented security controls. - Experience building compliance automation at scale including continuous monitoring, automated evidence generation, policy-as-code. - Background with CMMC Level 2 certification processes or FedRAMP authorization. - Experience securing AI/ML systems or data platforms where model access, data lineage, and processing boundaries carry compliance implications. - Familiarity with Azure security architecture (Azure Policy, Defender, Key Vault, Entra ID). - Prior work at a high-growth startup where you built the compliance program from the ground up, not just maintained one. - Experience working directly with enterprise customers on security reviews, vendor assessments, and audit responses.