Location
- Dublin HQ (Glasnevin)
- Hybrid (2 days on site but may be more/less depending on workload)
- Occasional Travel to UK/ US (once a quarter or less)
Role Purpose
- To execute the operational risk and compliance workload for the Deciphex Group under the direction of the CRCO.
- The CRCO designs and implements the Group's risk and compliance infrastructure — frameworks, registers, policies, appetite, escalation.
- The Risk & Compliance Officer runs the work that flows through that infrastructure on a daily and weekly basis.
- This is a hands-on execution role. There is no strategic, policy-setting, board, or regulator-facing element. The Officer is the operational engine of the function.
Core Workstreams (hand on role)
1. Insurance Programme Operations
Run the day-to-day administration of the Group's commercial insurance programme incl;
-
Coordinate annual renewals across all entities (Ireland, UK, US, Canada)
- gather underwriting data from Finance, HR, Operations, and Quality; respond to broker queries; chase quotes; coordinate sign-off with the CRCO. Process mid-term policy changes (new entities, headcount changes, new product lines, additional jurisdictions).
- Handle certificate-of-insurance requests from customers, NHS trusts, pharma partners, and investors.
- Coordinate claims notifications and act as the operational point of contact between the relevant internal owner, the broker, and the insurer.
- Verify and track professional indemnity coverage for the c.200 subcontracted pathologists — chase renewals, validate coverage scope, follow up on gaps.
2. Vendor & Third-Party Risk Execution
Run our vendor due diligence and ongoing monitoring process incl;
-
Take new vendor requests from procurement and commercial teams.
- Issue the standard due diligence pack, chase responses, and coordinate review by IS/IT (security), DPO (data protection), and QA (quality/GxP) as relevant.
- Track the assessment through to completion and feed the outcome back to the requester. Run periodic re-assessments on critical vendors on the cycle the CRCO sets.
- Support procurement and Legal with risk-related inputs into vendor contracts.
- Operational coordination of the subcontracted pathologist onboarding process alongside Quality, HR, and Operations.
3. ESG Data Operations
Run our ESG data collection cycle including;
-
Coordinate with HR, Finance, Operations, and Facilities to gather data on the cadence the CRCO sets — carbon footprint inputs, energy data, diversity metrics, governance data.
- Chase data owners.
- Quality-check submissions.
- Compile the data into the templates the CRCO and external advisors use for investor reporting, customer due diligence, and regulatory disclosure.
- Respond to incoming ESG questionnaires from customers, investors, and partners using approved data.
4. Incident & Compliance Coordination
Operational coordination across compliance domains including;
-
Capture reportable events into the Group incident log as they come in from Quality, DPO, IS/IT, and AI Governance.
- Track them through to closure — chase owners for status, prompt the CRCO when escalation thresholds are hit.
- Run the logistics for the Group Compliance Forum chaired by the CRCO — schedule, agenda compilation, action tracking, follow-up.
- Coordinate documentation requests for regulatory inspections, accreditation audits (UKAS, CLIA/CAP), and investor compliance diligence — pull policies, certificates, evidence packs from the relevant owners and assemble the response.
- Clinical governance, data breach handling, cyber response, and regulatory submissions stay with their existing owners.
- Coordinates logistics and tracking, not the investigation or response itself.
5. Compliance Calendar & Workflow Operations
Run the operational rhythm of the function including'
-
Maintain the consolidated compliance calendar built by the CRCO — audit dates, accreditation renewals, regulatory submission deadlines, policy review dates, insurance renewals, vendor reassessments.
- Chase owners ahead of deadlines.
- Prepare the CRCO's regular reporting packs by pulling status updates from functional leads.
- Handle ad hoc operational requests that come into the CRCO's office — diligence questionnaires, customer compliance requests, internal audit support.
What This Role Does NOT Do
- Build frameworks, policies, registers, or methodologies — that is the CRCO's work.
- Engage with the board, audit committee, investors, or regulators directly.
- Set risk appetite, policy positions, or escalation thresholds.
- Lead investigations, incident response, or audit findings — those stay with the relevant specialist function.
- Own clinical governance, ISO standards, GDPR decisions, regulatory submissions, or AI Act compliance — Quality, IS/IT, DPO, Regulatory Affairs, and AI Governance respectively.
- Negotiate contracts or interpret legal positions — General Counsel.
Person Specification
Essential
- 4-7+ years in risk, compliance, insurance broking, or audit coordination in a regulated business (healthcare, life sciences, medtech, financial services, or professional services).
- Direct hands-on experience supporting a commercial insurance programme — renewals, certificates, claims coordination, broker liaison.
- Demonstrable experience running multi-stakeholder operational workflows to deadline.
- Comfortable as a coordinator across senior functional leads — chases, collates, follows up without needing to escalate everything.
- Highly organised. Detail-oriented. Calendar-driven.
- Can hold ten live workstreams without dropping items.
- Discreet — handles sensitive insurance, incident, and commercial data appropriately.
Desirable
- Exposure to vendor risk management, ESG data coordination, or incident reporting workflows in a regulated environment.
- Working familiarity with GDPR, ISO 27001, MDR/IVDR, CLIA/CAP — enough to coordinate with specialists, not to own the domain.
- Part-qualified IRM, ICA, or insurance qualification (CII).
- Multi-entity, multi-jurisdiction group experience.
Competencies
- Operationally relentless.
- Organised, methodical, deadline-driven.
- Strong written communicator for diligence responses, audit packs, and broker submissions. Comfortable being the engine room rather than the face of the function.
- Pragmatic — gets work done without unnecessary process.
What the role offers you
- A defined operational mandate with the CRCO setting direction.
- Hands-on exposure across insurance, vendor risk, ESG, and Group-wide compliance coordination.
- Competitive salary and benefits.
- Hybrid working from Dublin.
What are the benefits of working with Deciphex?
- A true sense of meaning in your work by contributing to better patient outcomes.
- The opportunity to work alongside a world-class high performing team in a hyper-growth startup environment.
- A chance to work on exciting and challenging unique projects.
- Regular performance feedback and significant career growth opportunities.
- Competitive salary with performance based annual increments.
- A highly collaborative and supportive multi cultural team.
About us;
Through the work that we do, the team at Deciphex helps pharma to accelerate the process of essential drug development and helps cancer patients get timely and accurate diagnosis.
Founded in Dublin in 2017, Deciphex has scaled rapidly to a team of over 190 people and counting who are providing software solutions to address the pathology gap in research pathology and clinical areas. We have offices in Dublin, Exeter & Oxford (England), Chicago and Toronto and are expanding our team throughout the world.
We are software developers, clinical specialists, artificial intelligence engineers, operations professionals and so much more, all working as one team to support our customers and patients.
We are looking for highly motivated & individuals who are excited to take on challenges and value making a difference in their day-to-day work to join our team!
Our company is seeking a Regulatory Affairs Specialist to join our team, with a focus on supporting digital pathology products and services in the healthcare markets in North America. The ideal candidate will be responsible for ensuring that our digital pathology products and services complies with regulatory requirements.
Read more about Deciphex here and more about our incredible team on our Careers Page here
Deciphex is an equal opportunities employer and we are committed to the principle of equality. All qualified applicants will be considered for employment without regard to age, race, religious beliefs, political views, gender identity, affectional or sexual orientation, national origin, family or marital status (including pregnancy), disability, membership of the traveling community or any other classification protected by applicable law.
A copy of our Privacy Policy can be viewed here
