Legal & Compliance Specialist

🕒 May 6

🗣️🇧🇷🇵🇹 Portuguese Required

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Nutrium

Nutrium

11 - 50 employees

Founded 2015

☁️ SaaS

🧘 Wellness

🤝 B2B

SaaS • Wellness • B2B

Nutrium is a technology company that provides a software platform to support dietitians and organizations in delivering personalized, human-led nutrition care. Their tools enable nutrition professionals to manage clients, create individualized nutrition plans, and scale 1:1 nutrition services; the platform is used by dietitians across 90+ countries and is offered to companies as part of workplace or clinical solutions. Nutrium operates as a remote-first, product-driven team focused on improving wellbeing through accessible, evidence-informed nutrition services.

📋 Description

• Own and manage compliance execution across frameworks and regulations such as ISO 27001, ISO 27701, SOC 2, ISO 9001, HIPAA and GDPR; • Manage Nutrium's GRC platform, including controls, evidence, tasks, audits and remediation plans; • Prepare and support internal and external audits; • Maintain and improve internal policies, procedures, controls and compliance documentation; • Coordinate with Engineering, Legal, and Operations teams, and external consultants to ensure practical implementation of compliance requirements; • Respond to security questionnaires, due diligence requests and compliance-related documentation needs; • Support meetings with international clients, including US clients, on security, privacy, compliance and data flow topics; • Provide operational legal support, including first reviews of standard contracts, NDAs, DPAs, templates, signatures, filing and documentation.

🎯 Requirements

• Have a Bachelor's degree in Law, ideally complemented by a specialization in Information Security, Cybersecurity, Data Protection, or a related field; • Have 2 - 4 years of experience in compliance, legal operations, privacy, risk, governance or a similar area, ideally in a regulated environment (healthcare, SaaS or fintech is a plus); • Are familiar with frameworks such as ISO 27001, ISO 27701, SOC 2, ISO 9001, HIPAA and GDPR (hands-on experience with any of them is a plus); • Have experience working with GRC platforms to manage controls, evidence and audit cycles (nice to have); • Are comfortable preparing for and supporting internal and external audits; • Have experience responding to client security questionnaires and due diligence requests; • Are confident reviewing standard legal documents such as NDAs, DPAs and service agreements; • Are highly organized, structured and detail-oriented, with strong ownership over follow-ups and deadlines; • Thrive in collaborative environments and enjoy working with cross-functional teams and external consultants; • Are fluent in Portuguese and English (additional languages are a plus).

🏖️ Benefits

• A flexible work model and hours • 27 days of annual leave • Unlimited nutritional appointments (via Nutrium Care) • Unlimited psychology sessions • Health insurance • Meal allowance: 10,46€ per working day • Professional development budget • Snacks and good coffee in the offices • A multicultural team that enjoys spending time together, not just while working, but also through team activities, social events, and our annual offsite.

Apply Now