Senior Information Security Specialist, German-speaking

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Secfix

WebsiteLinkedInAll Job Openings

11 - 50 employees

📋 Compliance

🔒 Cybersecurity

☁️ SaaS

Compliance • Cybersecurity • SaaS

Secfix is a company that specializes in automating compliance processes for businesses to help them achieve and maintain security standards such as ISO 27001, TISAX, and GDPR. By utilizing integrations with cloud providers, SSO, HR systems, and ticketing tools, Secfix streamlines the compliance workflow, reducing manual effort by up to 90%. The platform offers features like automated checklists, risk management, vendor management, and policy management, making it easier for startups and SMEs to stay secure and compliant. Secfix is particularly beneficial for small companies seeking ISO 27001 certification, offering support to ensure a smooth and fast compliance journey. The company is based in Europe and prioritizes data protection with GDPR compliance and strict data encryption policies.

📋 Description

• Own and drive the compliance roadmap inside the Secfix platform across different compliance frameworks (ISO 27001, TISAX, SOC 2, GDPR, NIS 2, DORA, ISO 27017/27018, ISO 42001, C5, and more as we expand) • Implement ISO 27001 and adjacent frameworks end-to-end for customers • Mentor and upskill the compliance team: sharing expertise, reviewing work, and helping drive consistency in audits and customer deliverables • Conduct internal audits directly for strategic and complex customers, and review the internal audits performed by junior team members to drive quality and consistency • Act as a compliance partner to CSMs and sales reps: fast, reliable support for customer questions, and joining customer calls when deep expertise is needed • Own the quality of compliance content in the platform (including creating policies, evidence templates, Compliance enable playbooks for our CSMs, security awareness trainings and more) • Close framework gaps and incorporate auditor feedback into both team practice and platform improvements • Partner with product and engineering to translate compliance gaps into structured product work • Collaborate closely with CS, Product, and Founders to align compliance, customer, and roadmap priorities • Deepen relationships with our existing certification partners and train auditors on the Secfix platform so they can confidently use it during customer audits

🎯 Requirements

• German (C1/C2) and English (fluent) is a must for this role • 5+ years of hands‑on information security and GRC experience in B2B SaaS • Led 3+ successful ISO 27001 certification projects as an implementer and/or auditor at a startup or mid-market company • Hands on experience with a GRC platform like Secfix, or similar GRC platforms • Cloud infrastructure readiness across AWS, Azure, and GCP; experience with posture analysis and remediation planning • Strong project management skills with the ability to break down ambiguous initiatives into concrete deliverables, prioritizes ruthlessly, and ships • Excellent written communication, especially in producing clear, precise compliance content for diverse audiences (auditors, founders, engineers) • Strong ownership mindset: operates as a senior individual contributor without waiting for direction.

🏖️ Benefits

• Remote Work: 100% remote work with a virtual office in Gather. • Competitive Salary: Industry-competitive local salaries. We pay local rates that are at or above the market. We share this philosophy with GitLab. • Equity: Generous equity package – we’re all owners of Secfix and beneficiaries of our collective success. • Mentorship: We are backed by top VCs and accelerators and have direct access to world-class mentors. • Development Budget: €1,000 annual personal development budget. • Home office Budget: Home office budget and access to co-working spaces. • Holidays: 26 days holiday + local public holidays. • Health Insurance: Comprehensive health coverage. • Annual Retreat: Annual retreat to build connections and inspire ideas (this year we’re headed to Milan!). • Company Events: Company-wide events to build relationships and have some fun! • Tech Equipment: Latest tech equipment (MacBook, monitors, headphones).