Technology Risk and Compliance Manager (UK)
Careers at Eucalyptus
London, UK
Published 2 days ago
Enterprise Risk
Full time
About Euc
We're making good health last a lifetime
More than 1 billion people globally live with obesity, a significant leading indicator of many preventable chronic diseases such as diabetes and heart disease.
Eucalyptus is the company behind Juniper, one of the world's largest weight management programs combining GLP-1 medication with a tailored nutrition and exercise programme, supported by our multidisciplinary care team of prescribers, health coaches, dietitians, nurses and pharmacists.
Our published clinical research demonstrates that our combined approach to weight management and lifestyle change increases the likelihood of our patients losing significant weight during their treatment with Juniper by four times.
Since launching, we've grown fast to support millions of patients. In the last 12 months:
In 2025, we are charting the path to support hundreds of thousands of patients while launching into new conditions, demographics, and geographies as we move towards our vision of creating a preventive healthcare ecosystem.
We're building the world's largest international digital healthcare company. This will be highly challenging, very rewarding and the adventure of a lifetime, working with the best operators you will ever encounter.
If that gets you excited, let's talk!
About the role (What You'll Be Doing)
As a Technology Risk and Compliance Manager you will join our Trust Team (IT, Infrastructure and Cybersecurity) at Eucalyptus and contribute to building and maintaining a reliable digital health platform. You will drive technology risk management initiatives to help uplift our security posture and maintain trust in our healthcare services.
Key Responsibilities:
Skills & Experience
As a key member of our GRC team, you will have:
We're making good health last a lifetime
More than 1 billion people globally live with obesity, a significant leading indicator of many preventable chronic diseases such as diabetes and heart disease.
Eucalyptus is the company behind Juniper, one of the world's largest weight management programs combining GLP-1 medication with a tailored nutrition and exercise programme, supported by our multidisciplinary care team of prescribers, health coaches, dietitians, nurses and pharmacists.
Our published clinical research demonstrates that our combined approach to weight management and lifestyle change increases the likelihood of our patients losing significant weight during their treatment with Juniper by four times.
Since launching, we've grown fast to support millions of patients. In the last 12 months:
- We grew the size of our patient base by 10x in the UK, received selective NICE endorsement for our holistic approach to obesity management, and grew our team from 50 to 200.
- Globally, we grew revenue by >120% YoY, while reducing cash burned by 90% YoY, with over $100M USD raised from global investors such as BOND, NewView, Blackbird and Airtree - early backers of companies like Canva, Stripe, Uber and Airbnb.
In 2025, we are charting the path to support hundreds of thousands of patients while launching into new conditions, demographics, and geographies as we move towards our vision of creating a preventive healthcare ecosystem.
We're building the world's largest international digital healthcare company. This will be highly challenging, very rewarding and the adventure of a lifetime, working with the best operators you will ever encounter.
If that gets you excited, let's talk!
About the role (What You'll Be Doing)
As a Technology Risk and Compliance Manager you will join our Trust Team (IT, Infrastructure and Cybersecurity) at Eucalyptus and contribute to building and maintaining a reliable digital health platform. You will drive technology risk management initiatives to help uplift our security posture and maintain trust in our healthcare services.
Key Responsibilities:
- Deliver security and privacy projects. You'll design and run security and privacy management projects focused on customer trust, security awareness and third party risk management.
- Manage our technology compliance. You'll manage our compliance with with regulatory requirements such as GDPR and cybersecurity frameworks such as CIS18 and ISO27001. You'll design and implement security controls, policies and procedures to meet compliance requirements.
- Manage data governance requirements. You'll manage and mature our data governance program to ensure compliance with GDPR data security and privacy requirements. You will partner with our UK and Germany business to provide advice on data security risks and recommend appropriate controls to protect sensitive data.
- Partner with business and technology teams. You'll act as an advisor to our business and technology teams to develop and maintain sustainable risk mitigation strategies. You'll take a data-based approach to enable the business to effectively prioritise initiatives based on risk exposure.
Skills & Experience
As a key member of our GRC team, you will have:
- 5+ years of experience in technology risk management, cybersecurity or privacy.
- A risk-based approach to security which balances security against cost and efficiency gains.
- Experience implementing controls and policies to meet ISO 27001 and GDPR requirements.
- Experience performing risk assessments on third party vendors and software providers.
- Experience performing security posture assessments on cloud platforms (SaaS and IaaS) and taking a hands-on approach to risk remediation.
- Experience developing and facilitating security awareness training for non-technical audiences.
- Excellent written and verbal communication skills, particularly in communicating technology risks to technical and non-technical audiences.
- Strong business analysis and partnering skills. You thrive on the opportunity to work alongside diverse stakeholders across all areas of the organisation and to build strong business relationships.
- Problem-solving orientation: You approach challenges with creativity and persistence. You're comfortable with ambiguity and find solutions when requirements aren't fully defined. You can connect day-to-day work to larger objectives.
- Continuous learner: You're intellectually curious and humble. You actively seek new perspectives, adapt your thinking based on evidence, and embrace the learning curve of building in diverse health domains.
- Make real impact, fast - We build in the open together, which helps us learn and iterate more quickly to deliver high-quality outcomes faster than anyone else. Helping impact patients' lives for the better from the moment you join Euc.
- You'll be supported to accelerate your career - Regular feedback alongside our bi-annual performance reviews, a professional development budget & leave help ensure you have the support you need to level up. We're committed to helping every Eucalypt reach their full potential.
- You'll work with others who are incredibly passionate about what they do - Our talent bar is high, and our work ethic is strong. You'll get to stretch yourself every day, be given autonomy to tackle interesting problems, and work amongst people who care deeply about our patients.
- We also offer a range of benefits including
- Your own stake in the business with our employee options program
- A monthly wellness allowance, for you to spend on whatever wellness means to you
- A yearly personal development budget and 3 extra days of leave to continuously up-skill yourself
- 25 days holiday + bank holidays with an enhanced parental leave policy
- A fun office with regular socials including after-school sport, clubs, cycle kick-offs, and seasonal parties. We had our winter social in Paris last year! FR
- Your own MacBook and more!
- Want to hear more about what it's like to work at Eucalyptus? Hear from our team here or check us out on Instagram @eucalyptus.health