🛠 Tech Stack

💼 About This Role

You'll own Definely's security standards and compliance programs, supporting ISO 27001 and SOC 2 audits. You'll embed secure development practices into product teams and drive cloud security hygiene across Azure or AWS. This is a rare opportunity to shape security at a fast-growing LegalTech startup backed by Microsoft and Google.

🎯 What You'll Do

• Lead ISO 27001 and SOC 2 Type II audits
• Embed secure SDLC practices across product teams
• Own incident response plan and lead tabletop exercises
• Provide day-to-day IT support and device management

📋 Requirements

• Proven experience in information security within a SaaS or product environment
• Strong track record of delivering ISO 27001 or SOC 2 certifications
• Deep knowledge of secure SDLC and threat modelling
• Strong cloud security expertise across Azure or AWS

✨ Nice to Have

• Experience with compliance tooling such as Drata
• Relevant certifications such as CISSP, CISM, or CCSK

🎁 Benefits & Perks

• 💰 Competitive salary & annual bonus
• 📈 Equity in Definely
• 🏖️ 25 days holiday + bank holidays
• 📚 £750 annual learning & development budget
• 🩺 Private healthcare (incl. dental & optical)

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Call· 30 min
2. 2Technical Interview· 60 min
3. 3Hiring Manager Interview· 60 min

[email protected]