Director of Compliance

PolyAI automates customer service through lifelike voice assistants that let customers lead a conversation. Our voice assistants make it possible for businesses to deliver outstanding customer service that rivals their human agents. Our customers, which include the world’s leading logos, are expanding how they use our platform, driving automation of critical customer service operations and integrating PolyAI into their daily customer service workflows. Your responsibility will involve: Working closely with the General Counsel to build and scale PolyAI’s global compliance programme across its UK, US, Serbia and Canada offices. Working closely with the CTO and Security team to ensure compliance, security, and governance frameworks are effectively embedded into our technology and product development processes. Manage our insurance programme and renewals working with the GC to ensure that we have market standard coverage and are mitigating risks via insurance. Leading on data security incident response, working with security, legal and other impacted teams and running retros where necessary. Own and manage compliance certifications, strategy and audit programmes including SOC 2 and ISO 27001 (and related standards). Act as the bridge between Legal, Security, and Engineering including helping the GC and CTO operationalize AI governance and technical controls. Lead audit preparation, internal readiness, and ongoing control monitoring across the business. Develop and maintain company policies, procedures, and internal controls aligned with regulatory and enterprise customer requirements. Partner closely with Security, Product, Engineering, and Legal teams to operationalise compliance requirements. Support building and evolving the AI Governance framework in collaboration with the GC, CTO, product, tech and research teams and attending our monthly Product and AI Squad. Support the business in preparing for emerging AI regulatory regimes (including the EU AI Act and related global initiatives). Build scalable compliance processes to support enterprise sales, customer diligence requests, and vendor risk management. End to end ownership of the vendor onboarding process, ensuring that all third party engagements meet regulatory and internal compliance requirements from due diligence through internal approvals and ongoing oversight. Maintain risk registers and compliance monitoring frameworks, identifying areas for continuous improvement and reporting on key risks to the Board and Audit Committee. Supporting the ESG squad on areas of governance and compliance, providing annual board reporting. Provide guidance and training across the organisation to embed a culture of responsible AI, security, and compliance. What you’ll come with: 8+ years of experience in compliance, governance, risk, audit, or related roles in technology, SaaS, or AI companies. Direct experience managing or supporting SOC 2 and/or ISO 27001 certification programmes. Experience building and scaling compliance programmes in high-growth companies. Strong understanding of information security, technology risk, and regulatory compliance frameworks. Experience working cross-functionally with legal, security, engineering, and product teams. Excellent written and verbal communication skills with the ability to translate complex regulatory topics into practical guidance. Proven ability to work independently while collaborating across multiple teams. Flexibility to manage multiple priorities and evolving regulatory landscapes. Be a pragmatic and solutions-oriented problem solver who can balance risk management with business objectives. We’d love it if you have: Experience working in AI, machine learning, or data-driven technology companies. Familiarity with emerging AI governance frameworks and regulatory developments. Experience supporting enterprise customers in regulated industries. We offer competitive compensation based on experience, expertis ... (truncated, view full listing at source)