Moss
Information Security GRC Lead(m/w/x)
Full-timeWith HomeofficeExperienced
Berlin
New Job?Nejo!
Your personal AI career agent
SESecfix
Information Security Specialist (German-speaking)(m/w/x)
Berlin
Full-timeFreelanceRemoteExperienced
AI/ML
Data Science
Nejo AI Summary
Managing compliance lifecycle for a platform serving European startups and SMBs, assessing tech stack posture across cloud and container environments. Experience leading ISO 27001 certification projects required. Generous equity package, €1,000 annual development budget, remote workspace budget.
Requirements
- Fluency in German (C1/C2) and English
- Fluency in German (C1/C2) and English
- 3+ years of hands-on information security and GRC experience
- Experience leading ISO 27001 certification projects
- Hands-on experience with a GRC platform—Secfix or similar
- Cloud infrastructure readiness across AWS, Azure, and GCP
- Experience automating internal processes and building prototypes
- SOC 2 implementation and audit experience
- Experience acting as DPO
Tasks
- Own the compliance lifecycle from onboarding to certification and continuous compliance
- Scope controls and drive risk treatment, evidence, and gap closure
- Draft customer roadmaps for security improvements
- Lead audits to ensure a clean pass as the primary security contact
- Assess tech stack posture and map controls to AWS, Azure, GCP, Kubernetes, Docker, and Terraform
- Draft new best practices for security
- Prioritize actionable remediation with clear timelines
- Tailor security programs across ISO 27001, SOC 2, NIST, and other frameworks
- Align security requirements to each customer's environment and objectives
- Build and run runbooks, templates, QA, and knowledge base
- Communicate with executives and represent Secfix in select public forums
- Translate frontline insights into clear requirements for the AI product
- Collaborate with Product and Engineering to prioritize and ship features
- Lead customer-side audits, confidently answering auditor questions
- Build and automate new internal processes
- Draft security policies and custom security documents
- Answer security questionnaires and cross-map controls
- Get onboarded into new regulations or infosec standards
- Create lists of relevant cloud security hardening tasks for AWS, Azure, and GCP
Work Experience
- 3 years
Education
- Vocational certificationOR
- Bachelor's degreeOR
- Master's degree
Languages
- German – Business Fluent
- English – Business Fluent
Tools & Technologies
- AWS
- Azure
- GCP
- Secfix
Benefits
Competitive Pay
- Generous equity package
Healthcare & Fitness
- Health insurance
Learning & Development
- €1,000 annual personal development budget
Flexible Working
- Remote workspace budget
Modern Office
- Access to co-working spaces
Team Events
- Annual retreat
- Company-wide events
Modern Equipment
- Latest tech equipment
Mentorship & Coaching
- Direct access to world-class mentors
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Secfix and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
Not a perfect match?
- Kertos GmbH
Information Security Expert(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Delos Cloud
ISMS Expert(m/w/x)
Full-timeWith HomeofficeExperiencedEschborn, Berlin, Walldorf, Frankfurt am Main, München, Leipzig, Rheda-Wiedenbrück - Shiftmove
(Senior) Information Security Officer(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Seven Education
Chief Information Security Officer (CISO)(m/w/x)
Full-timeWith HomeofficeSeniorHamburg, Berlin, Koblenz
SESecfix
Information Security Specialist (German-speaking)(m/w/x)
Berlin
Full-timeFreelanceRemoteExperienced
AI/ML
Data Science
Nejo AI Summary
Managing compliance lifecycle for a platform serving European startups and SMBs, assessing tech stack posture across cloud and container environments. Experience leading ISO 27001 certification projects required. Generous equity package, €1,000 annual development budget, remote workspace budget.
Requirements
- Fluency in German (C1/C2) and English
- Fluency in German (C1/C2) and English
- 3+ years of hands-on information security and GRC experience
- Experience leading ISO 27001 certification projects
- Hands-on experience with a GRC platform—Secfix or similar
- Cloud infrastructure readiness across AWS, Azure, and GCP
- Experience automating internal processes and building prototypes
- SOC 2 implementation and audit experience
- Experience acting as DPO
Tasks
- Own the compliance lifecycle from onboarding to certification and continuous compliance
- Scope controls and drive risk treatment, evidence, and gap closure
- Draft customer roadmaps for security improvements
- Lead audits to ensure a clean pass as the primary security contact
- Assess tech stack posture and map controls to AWS, Azure, GCP, Kubernetes, Docker, and Terraform
- Draft new best practices for security
- Prioritize actionable remediation with clear timelines
- Tailor security programs across ISO 27001, SOC 2, NIST, and other frameworks
- Align security requirements to each customer's environment and objectives
- Build and run runbooks, templates, QA, and knowledge base
- Communicate with executives and represent Secfix in select public forums
- Translate frontline insights into clear requirements for the AI product
- Collaborate with Product and Engineering to prioritize and ship features
- Lead customer-side audits, confidently answering auditor questions
- Build and automate new internal processes
- Draft security policies and custom security documents
- Answer security questionnaires and cross-map controls
- Get onboarded into new regulations or infosec standards
- Create lists of relevant cloud security hardening tasks for AWS, Azure, and GCP
Work Experience
- 3 years
Education
- Vocational certificationOR
- Bachelor's degreeOR
- Master's degree
Languages
- German – Business Fluent
- English – Business Fluent
Tools & Technologies
- AWS
- Azure
- GCP
- Secfix
Benefits
Competitive Pay
- Generous equity package
Healthcare & Fitness
- Health insurance
Learning & Development
- €1,000 annual personal development budget
Flexible Working
- Remote workspace budget
Modern Office
- Access to co-working spaces
Team Events
- Annual retreat
- Company-wide events
Modern Equipment
- Latest tech equipment
Mentorship & Coaching
- Direct access to world-class mentors
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Secfix and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
About the Company
Secfix
Industry
IT
Description
The company is building the leading compliance automation platform for startups and SMBs in Europe.
Not a perfect match?
- Moss
Information Security GRC Lead(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Kertos GmbH
Information Security Expert(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Delos Cloud
ISMS Expert(m/w/x)
Full-timeWith HomeofficeExperiencedEschborn, Berlin, Walldorf, Frankfurt am Main, München, Leipzig, Rheda-Wiedenbrück - Shiftmove
(Senior) Information Security Officer(m/w/x)
Full-timeWith HomeofficeExperiencedBerlin - Seven Education
Chief Information Security Officer (CISO)(m/w/x)
Full-timeWith HomeofficeSeniorHamburg, Berlin, Koblenz