Job Details
Job Title: Compliance Manager
Location: Swissport Madrid (Spain) - Hybrid (3 days work from office, 2 days from home)
Reporting to: Head of Compliance
Swissport is the world's largest provider of ground handling, cargo and other aviation-related services, with a presence at approximately 300 airports in 45 countries and a global workforce of 60,000 employees.
Job Summary
The Compliance Manager supports the Head of Compliance in the implementation and continuous improvement of the Group Compliance Programme. The role covers a broad range of compliance activities, including policy implementation, investigations, training and awareness, risk assessment, governance support, and cross-functional coordination across regions and functions.
Main Responsibilities
- Compliance Programme Implementation:
- Support the Head of Compliance in implementing and continuously improving the group compliance programme and annual compliance plan.
- Develop, update, and support the roll-out of compliance policies, procedures and controls across the organisation.
- Drive implementation of key compliance initiatives globally, in coordination with business and functional stakeholders.
- Support the Company in achieving relevant compliance certifications (e.g., ISO 37001, ECOVADIS).
- Monitor and report on compliance programme effectiveness through KPIs and metrics.
- Internal Investigations and Speak Up:
- Support the management of Swissport's whistleblowing platform in cooperation with the Head of Compliance.
- Coordinate and onboard local investigators across regions, providing guidance and support to ensure consistent investigation standards and practices.
- Drive continuous improvement of the whistleblowing platform in collaboration with the external vendor.
- Manage or support internal investigations into compliance concerns, violations and breaches.
- Coordinate remediation and follow-up actions with relevant stakeholders and maintain appropriate case documentation and reporting.
- Track and analyse investigation trends and patterns and prepare relevant reporting to management.
- Data Protection:
- Develop and implement data protection policies and procedures.
- Respond to data subject requests and conduct data protection impact assessments (DPIAs).
- Review and negotiate Data Protection Agreements in collaboration with the Legal, Procurement and Commercial departments.
- Provide advice to the business on data protection-related matters.
- Risk Assessment and Enterprise Risk Management:
- Support the enterprise risk management process, including the periodic review of risks and relevant controls, in collaboration with the Head of Compliance and the Internal Audit function.
- Support the implementation of risk mitigation actions and follow-up with relevant stakeholders.
- Training, Communication and Awareness:
- Develop and deliver compliance and data protection training and awareness initiatives.
- Prepare communication materials and campaigns to strengthen awareness of compliance obligations, key risks and company policies.
- Support recurring training, certification and policy acknowledgement activities across the organisation.
- Regulatory Compliance:
- Monitor relevant legal and regulatory developments across key compliance areas and support the assessment of their impact on the business and compliance framework.
- Reporting and Documentation:
- Prepare compliance reports, dashboards, presentations and other management information, as required.
- Maintain accurate documentation of compliance activities, reports, investigations, and data protection practices.
- Cross-functional Collaboration and Business Support:
- Work closely with business and functional stakeholders to support the integration of compliance, data protection and risk management requirements into day-to-day operations.
- Provide practical compliance guidance and support to internal stakeholders across regions and functions.
- Promote a culture of integrity and compliance through effective communication, coordination and engagement.
Qualifications And Competencies
- Master’s degree in law or related field.
- Approximately 5-8 years of experience in compliance and data protection, ideally within an international or multinational environment.
- Strong understanding of relevant laws, regulations, data protection laws (e.g., GDPR), and risk management principles.
- Proven experience in policy development, training delivery, investigations, risk assessments, and cross-functional compliance initiatives.
- Experience managing whistleblowing programmes and conducting internal investigations.
- Professional proficiency in English (business language) is required. Other languages are a plus.
- Excellent project management skills and outstanding attention to detail.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills, with the ability to work effectively across functions and regions.
- Ability to work autonomously while managing multiple priorities in a fast-paced international environment.
- Sound business judgement and the ability to translate compliance requirements into practical business solutions.
Preferential
- Professional certification in compliance, data protection, or risk management (e.g., Certified Compliance & Ethics Professional - CCEP, Certified Information Privacy Professional - CIPP/E, Certified Risk Management Professional).
- Experience in the aviation or transportation sector.
Equal Employment Opportunity Statement
Swissport as an equal opportunity employer bases its hiring decisions on the business need and the best qualified candidates available and does not discriminate in its employment decisions based on any protected category. Candidates who are offered employment may be subject to a criminal record and other background checks as permitted or required by company policy or applicable law.
