Vontobel Swiss Financial Advisers AG
Senior Compliance Officer(m/w/x)
Full-timeOn-siteSenior
Zürich
New Job?Nejo!
Your personal AI career agent
PDPDF Tools AG
Information Security & Compliance Officer(m/w/x)
Zürich
Full-timeOn-siteExperienced
Nejo AI Summary
Maintaining ROPA and ensuring GDPR/Swiss FADP/CCPA compliance for B2B SaaS document workflow solutions. 3-5+ years data protection experience required. 30 vacation days, sabbatical leave, pet-friendly office.
Requirements
- 3-5+ years information security, data protection, or compliance experience
- Experience in B2B software or SaaS environment
- Working knowledge of GDPR and Swiss FADP
- Hands-on experience with ROPAs, DPAs, DSR handling
- Experience with data transfer mechanisms (SCCs, adequacy decisions)
- Familiarity with ISO 27001, SOC 2, or similar security frameworks
- Understanding of security framework requirements
- Ability to build and maintain risk register
- Ability to drive risk mitigation across teams
- Strong written and verbal communication in English
- German language skills (significant plus)
- Pragmatic and structured approach
- Ability to prioritize in a 50-person company
- Comfortable working independently
- Experience with OSS license compliance
- Experience with SBOM generation
- Experience with license scanning tools (BlackDuck, FOSSA, or similar)
- Exposure to AI Act requirements
- Exposure to DORA requirements
- Exposure to NIS2 requirements
- Background in software development or engineering
- Understanding of CI/CD pipelines
- Understanding of cloud infrastructure
- Understanding of product architecture
- Experience in M&A context
- Experience in due diligence context
- CIPP/E certification
- CIPM certification
- CISM certification
- ISO 27001 Lead Implementer certification
Tasks
- Own and maintain the Register of Processing Activities (ROPA)
- Ensure GDPR, Swiss FADP, and CCPA compliance
- Manage data subject request (DSR) workflows
- Define and enforce data retention and deletion policies
- Maintain and improve privacy policies
- Maintain the processor register and DPA repository
- Ensure vendors have reviewed DPAs with appropriate safeguards
- Establish and run annual vendor review cadence
- Map and document international data transfers and safeguards
- Own and maintain Technical and Organizational Measures (TOMs) documentation
- Drive formalization and testing of security controls
- Coordinate external penetration testing
- Build security monitoring and incident response capability
- Maintain and update the risk register
- Evaluate and recommend security tooling
- Track emerging regulatory requirements
- Prepare for potential ISO 27001 or SOC 2 certification
- Coordinate with external legal counsel on regulatory assessments
- Respond to customer compliance questionnaires
- Support sales and pre-sales with compliance documentation
- Ensure product-level compliance in engineering workflows
- Provide policy framework and audit for OSS license compliance
- Define and validate product security features
- Provide compliance input for contract negotiations
- Define IT operations and infrastructure security policies
- Close existing compliance gaps in the first 6 months
- Work closely with the CTO on handover and operational ownership
- Interface with external counsel and sales on customer questionnaires
- Maintain and improve the compliance program
- Run periodic reviews and prepare for audits
- Track regulatory changes
- Build internal awareness through training and guidelines
Work Experience
- 3 years
Education
- Vocational certificationOR
- Bachelor's degreeOR
- Master's degree
Languages
- English – Native
- German – Basic
Tools & Technologies
- GDPR
- Swiss FADP
- ROPAs
- DPAs
- DSR handling
- SCCs
- adequacy decisions
- ISO 27001
- SOC 2
- BlackDuck
- FOSSA
- AI Act
- DORA
- NIS2
- CI/CD pipelines
- cloud infrastructure
Benefits
More Vacation Days
- 30 vacation days
Flexible Working
- Flexible working hours
Workation & Sabbatical
- Sabbatical leave
Generous Parental Leave
- 16 weeks parental leave
Informal Culture
- Pet-friendly office
Additional Allowances
- 2,000 CHF well-being budget yearly
Learning & Development
- Training and development budget
- Days off for courses or training
Mental Health Support
- Physical and mental well-being support
Competitive Pay
- Phantom stock option plan
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of PDF Tools AG and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
Not a perfect match?
- Vontobel Swiss Financial Advisers AG
Senior Compliance Officer(m/w/x)
Full-timeOn-siteSeniorZürich - CH10 - BJB Bank Julius Baer & Co. Ltd.
Data Leakage Prevention (DLP) Specialist(m/w/x)
Full-timeOn-siteExperiencedZürich - On
Senior Lead - Legal Counsel, Technology & Commercial(m/w/x)
Full-timeOn-siteSeniorZürich - CH10 - BJB Bank Julius Baer & Co. Ltd.
Compliance Officer - Intermediaries(m/w/x)
Full-timeOn-siteExperiencedZürich
PDPDF Tools AG
Information Security & Compliance Officer(m/w/x)
Zürich
Full-timeOn-siteExperienced
Nejo AI Summary
Maintaining ROPA and ensuring GDPR/Swiss FADP/CCPA compliance for B2B SaaS document workflow solutions. 3-5+ years data protection experience required. 30 vacation days, sabbatical leave, pet-friendly office.
Requirements
- 3-5+ years information security, data protection, or compliance experience
- Experience in B2B software or SaaS environment
- Working knowledge of GDPR and Swiss FADP
- Hands-on experience with ROPAs, DPAs, DSR handling
- Experience with data transfer mechanisms (SCCs, adequacy decisions)
- Familiarity with ISO 27001, SOC 2, or similar security frameworks
- Understanding of security framework requirements
- Ability to build and maintain risk register
- Ability to drive risk mitigation across teams
- Strong written and verbal communication in English
- German language skills (significant plus)
- Pragmatic and structured approach
- Ability to prioritize in a 50-person company
- Comfortable working independently
- Experience with OSS license compliance
- Experience with SBOM generation
- Experience with license scanning tools (BlackDuck, FOSSA, or similar)
- Exposure to AI Act requirements
- Exposure to DORA requirements
- Exposure to NIS2 requirements
- Background in software development or engineering
- Understanding of CI/CD pipelines
- Understanding of cloud infrastructure
- Understanding of product architecture
- Experience in M&A context
- Experience in due diligence context
- CIPP/E certification
- CIPM certification
- CISM certification
- ISO 27001 Lead Implementer certification
Tasks
- Own and maintain the Register of Processing Activities (ROPA)
- Ensure GDPR, Swiss FADP, and CCPA compliance
- Manage data subject request (DSR) workflows
- Define and enforce data retention and deletion policies
- Maintain and improve privacy policies
- Maintain the processor register and DPA repository
- Ensure vendors have reviewed DPAs with appropriate safeguards
- Establish and run annual vendor review cadence
- Map and document international data transfers and safeguards
- Own and maintain Technical and Organizational Measures (TOMs) documentation
- Drive formalization and testing of security controls
- Coordinate external penetration testing
- Build security monitoring and incident response capability
- Maintain and update the risk register
- Evaluate and recommend security tooling
- Track emerging regulatory requirements
- Prepare for potential ISO 27001 or SOC 2 certification
- Coordinate with external legal counsel on regulatory assessments
- Respond to customer compliance questionnaires
- Support sales and pre-sales with compliance documentation
- Ensure product-level compliance in engineering workflows
- Provide policy framework and audit for OSS license compliance
- Define and validate product security features
- Provide compliance input for contract negotiations
- Define IT operations and infrastructure security policies
- Close existing compliance gaps in the first 6 months
- Work closely with the CTO on handover and operational ownership
- Interface with external counsel and sales on customer questionnaires
- Maintain and improve the compliance program
- Run periodic reviews and prepare for audits
- Track regulatory changes
- Build internal awareness through training and guidelines
Work Experience
- 3 years
Education
- Vocational certificationOR
- Bachelor's degreeOR
- Master's degree
Languages
- English – Native
- German – Basic
Tools & Technologies
- GDPR
- Swiss FADP
- ROPAs
- DPAs
- DSR handling
- SCCs
- adequacy decisions
- ISO 27001
- SOC 2
- BlackDuck
- FOSSA
- AI Act
- DORA
- NIS2
- CI/CD pipelines
- cloud infrastructure
Benefits
More Vacation Days
- 30 vacation days
Flexible Working
- Flexible working hours
Workation & Sabbatical
- Sabbatical leave
Generous Parental Leave
- 16 weeks parental leave
Informal Culture
- Pet-friendly office
Additional Allowances
- 2,000 CHF well-being budget yearly
Learning & Development
- Training and development budget
- Days off for courses or training
Mental Health Support
- Physical and mental well-being support
Competitive Pay
- Phantom stock option plan
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of PDF Tools AG and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
About the Company
PDF Tools AG
Industry
IT
Description
Pdftools is a Swiss B2B software company specializing in PDF processing SDKs, conversion services, and document workflow solutions for enterprise customers across regulated industries.
Not a perfect match?
- Vontobel Swiss Financial Advisers AG
Senior Compliance Officer(m/w/x)
Full-timeOn-siteSeniorZürich - Vontobel Swiss Financial Advisers AG
Senior Compliance Officer(m/w/x)
Full-timeOn-siteSeniorZürich - CH10 - BJB Bank Julius Baer & Co. Ltd.
Data Leakage Prevention (DLP) Specialist(m/w/x)
Full-timeOn-siteExperiencedZürich - On
Senior Lead - Legal Counsel, Technology & Commercial(m/w/x)
Full-timeOn-siteSeniorZürich - CH10 - BJB Bank Julius Baer & Co. Ltd.
Compliance Officer - Intermediaries(m/w/x)
Full-timeOn-siteExperiencedZürich