Information Security Compliance Manager/Data Protection Manager (Igaming)

TL;DR

Information Security Compliance Manager/Data Protection Manager (Igaming): Manage ISMS documentation, ensuring alignment with regulatory requirements for information security and betting. Focus on driving compliance initiatives, overseeing regulatory and certification activities, and coordinating multi-jurisdictional compliance projects.

Location: Remote or on-site in Riga, Budva, or Barcelona. Must be willing to work on-site at our offices in Riga, Budva, or Barcelona

Company

hirify.global is seeking an experienced Compliance Manager / Data Protection Manager to join their Information Security team.

What you will do

• Maintain ISMS documentation, ensuring timely updates in line with regulatory, certification, and business requirements.
• Coordinate activities related to ISO 27001, SOC 2, GDPR, and other applicable standards and industry regulations, including preparation for audits.
• Track changes in global and jurisdiction-specific data protection and betting/iGaming regulatory landscapes, translating regulatory changes into actionable internal controls.
• Serve as the primary point of contact for internal and external stakeholders, including Legal team, auditors, consultants, and legal advisors.
• Lead and coordinate data security projects, including design and implementation of internal data protection requirements and participation in incident investigations.
• Develop, document, and improve processes related to information security regulatory compliance and data protection, identifying and addressing gaps.

Requirements

• Demonstrable experience in management of ISMS documentation and processes.
• Advanced knowledge of global and regional regulatory frameworks, including ISO 27001, SOC 2, GDPR, and betting/iGaming industry-specific requirements.
• Certifications such as CIPP/E, CIPM, CISM, or ISO 27001 Lead Implementer/Auditor.
• Proven experience driving compliance programs and managing external audits, certifications, and regulatory projects.
• Track record of monitoring regulatory developments, interpreting changes, and translating them into internal policies and controls.
• Minimum 3 years of professional experience in compliance, data protection, or information security management.

Nice to have

• Hands-on experience with privacy management platforms and GRC tools.
• Experience in the betting, gaming, or financial services industry.
• Expertise in regulatory reporting, incident management, or vendor risk assessment.

Culture & Benefits

• Comprehensive health insurance and 100% paid sick leaves.
• Access to extra education opportunities and language courses tailored to your needs.
• 20 working days of paid vacation and additional days off.
• Relocation support and welfare program for financial support in critical situations.
• Fantastic corporate events, team buildings, and gifts for significant life events.
• Optimal productivity with the best new hardware.