🛠 Tech Stack

💼 About This Role

You'll own and scale the compliance and security program at a Swiss B2B software company specializing in PDF processing SDKs. You'll close gaps, build repeatable processes, and represent our posture to customers and auditors. GDPR compliance and Security frameworks are key areas.

🎯 What You'll Do

• Maintain ROPA and ensure GDPR/FADP compliance across operations.
• Manage vendor DPAs and run annual vendor reviews.
• Coordinate penetration testing and formalize security controls.
• Respond to customer compliance questionnaires and support sales.

📋 Requirements

• 3-5+ years in information security or compliance roles in B2B software.
• Working knowledge of GDPR and Swiss FADP with hands-on ROPA/DPA experience.
• Familiarity with ISO 27001 or SOC 2 frameworks.
• Ability to build and maintain a risk register and drive mitigation.

✨ Nice to Have

• Experience with Swiss regulatory context (FADP, local vendors).
• German language skills.
• Knowledge of AI Act, DORA, or NIS2.

🎁 Benefits & Perks

• 🏠 Remote-first work culture
• 🏥 Health insurance contribution
• 📚 Professional development budget
• ✈️ Annual team retreat
• ⏰ Flexible hours

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Call· 30 min
2. 2Technical Interview· 60 min
3. 3Offer· 30 min

🚩 Heads Up

• Role combines compliance, security, and privacy ownership without dedicated team support.
• Expectation to close gaps in first 6 months may indicate urgent needs not fully budgeted.
• No mention of budget for tools or external resources.