💼 About This Role

You'll own Sendcloud's ISO 27001 ISMS and drive security risk management across a fast-growing e-commerce shipping platform. Your work will enable safe scaling while keeping security a business enabler.

🎯 What You'll Do

• Own the ISO 27001 ISMS and ensure audit readiness
• Run security risk management with clear mitigation timelines
• Drive practical security governance and policies
• Manage third-party and vendor security risk assessments
• Lead security incident governance and post-incident learning

📋 Requirements

• 3+ years (typically 5+) of ISMS ownership and audit cycle experience
• Proven experience operating an ISO 27001 ISMS and driving remediation
• Strong stakeholder management across Engineering and leadership
• Pragmatic, risk-based mindset balancing security and speed

✨ Nice to Have

• Experience with SOC 2 readiness
• Familiarity with AI governance and GenAI risks
• CISSP, CISM, CISA, or equivalent certification

🎁 Benefits & Perks

• 🏠 €500 home office budget
• 🎉 28 holidays + birthday day off
• 🏝️ 4-week paid sabbatical after 3 years
• 📚 €2,000 annual study budget
• 💪 Weekly Bootcamp and Boxing sessions

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Initial recruiter screen· 30 min
2. 2Hiring manager interview· 45 min
3. 3Technical/behavioral interview· 60 min