Lead and drive the company’s work within information security, regulatory compliance, and data protection
Job Summary
Lead and drive the company’s work within information security, regulatory compliance, and data protection.
Continue developing the company’s Information Security Management System (ISMS) in line with ISO 27001, strengthen compliance with NIS2, the Cyber Resilience Act (CRA), and GDPR.
This is an opportunity to step into a key role in an international software company where your expertise will truly matter.
Matching Summary
Lead and drive the company’s work within information security, regulatory compliance, and data protection.
Skills & Requirements
Must-have
Information Security Management System (ISMS)
ISO 27001 compliance
NIS2, CRA, and GDPR compliance
Secure software development practices
Vulnerability management
Nice-to-have
DevSecOps experience
OWASP Security Champion
CISSP, CISM, ISO 27001 certifications
Key Requirements
5+ years of experience in information security, cyber security, or IT governance
Experience implementing ISO 27001 or similar frameworks
Experience working with GDPR and broader regulatory compliance
Solid understanding of security and compliance in a software, SaaS, or technology-driven environment
Experience as a OWASP Security Champion
Experience working closely with software development teams