🛠 Tech Stack

💼 About This Role

You'll design and build Filigran's first information security program as a hands-on CISO, reporting to the CEO. You'll establish the Filigran-CERT and hold the formal DPO mandate, ensuring resilience and compliance with GDPR, AI Act, and NIS2. This is a unique player-coach role in a fast-growing open-source cybersecurity company.

🎯 What You'll Do

• Design and implement Filigran's first CSIRT and SecOps framework.
• Act as primary incident commander for security events and breaches.
• Leverage OpenCTI and OpenBAS for threat intelligence and attack simulation.
• Establish an ISMS aligned with ISO 27001 and manage external audits.

📋 Requirements

• 10+ years in information security leadership (CISO, Head of Security, CSIRT Manager).
• Formal DPO qualification or equivalent GDPR and EU data protection expertise.
• Hands-on incident response and security monitoring experience.
• Experience with threat intelligence frameworks (MITRE ATT&CK, STIX/TAXII).

✨ Nice to Have

• Familiarity with red teaming or breach & attack simulation (BAS).
• Used OpenCTI or OpenBAS products.
• French language fluency.

🎁 Benefits & Perks

• 💰 Competitive pay + equity
• 🏠 Remote-first, flexible work
• 💻 Your setup, your choice
• 🌍 Twice-a-year global offsites