Senior Information Security Specialist (GRC)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Senior Information Security Specialist (GRC): Leading compliance delivery and platform content strategy for a security automation startup with an accent on ISO 27001, SOC 2, and GDPR frameworks. Focus on mentoring the compliance team, conducting complex internal audits, and bridging the gap between customer requirements and product development.
Location: Must be based within +/- 2 hours of Germany (GMT+1)
Company
is a high-growth startup automating security compliance for modern companies, backed by top-tier VCs.
What you will do
- Own and drive the compliance roadmap across frameworks like ISO 27001, TISAX, SOC 2, and GDPR.
- Implement compliance frameworks end-to-end for strategic mid-market customers.
- Mentor and upskill junior compliance specialists to ensure high-quality audit deliverables.
- Create and maintain compliance content, including policies, evidence templates, and playbooks.
- Partner with product and engineering teams to translate compliance gaps into actionable product features.
- Act as a senior compliance expert for customer success, sales, and external auditors.
Requirements
- German (C1/C2) and English (fluent) proficiency is mandatory.
- Must be based within +/- 2 hours of Germany (GMT+1).
- 5+ years of hands-on information security and GRC experience in B2B SaaS.
- Proven track record of leading at least 3 successful ISO 27001 certification projects.
- Deep knowledge of cloud infrastructure (AWS, Azure, GCP) and posture analysis.
- Strong project management skills and ability to operate with high ownership.
Nice to have
- Experience implementing additional frameworks like NIS 2, DORA, or C5.
- Prior experience in a startup environment.
- Background in mentoring or coaching colleagues in a GRC context.
Culture & Benefits
- 100% remote work environment with a virtual office in Gather.
- Competitive local salary and generous equity package.
- €1,000 annual personal development budget and home office support.
- 26 days of holiday plus local public holidays.
- Comprehensive health coverage and annual company retreats.
Hiring process
- Intro call with the Talent team.
- Take-home assessment.
- Assessment review and interview with CS Lead and CEO.
- Final interview with Co-Founders (CTO & CISO).
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
Governance Risk and Compliance Expert (GRC)
Senior Security Engineer (GRC)
Security Governance Consultant (Cybersecurity)
Director Of GRC & Privacy (Fintech)
Security Lead (Cybersecurity)