Compliance Legal Counsel

• Coordinate the Risk Assessment Process
  Drive our company-wide risk assessment cycles, working with various stakeholders to identify, analyze, and mitigate potential risks to our business.
  

• Manage Vendor Compliance
  Own the vendor assessment process from a compliance standpoint. This includes evaluating new vendors, performing due diligence, and monitoring existing third-party relationships to ensure they meet our security standards.
  

• Champion our ISMS
  Take ownership of our Information Security Management System (ISMS), ensuring its ongoing maintenance, effectiveness, and continuous improvement in line with our ISO/IEC 27001:2022 certification.
  

• Support Regulatory Implementation
  Work closely on the interpretation and implementation of internal policies and processes in line with key EU regulations, such as DORA, NIS2, and other frameworks related to cybersecurity and risk management, ensuring that compliance measures are integrated into day-to-day operations.
  

• Lead Internal Audits Plan and conduct internal audits related to the ISMS. This involves preparing audit plans, interviewing colleagues across departments, and creating clear, actionable reports to drive improvements.

• You have practical knowledge of information security frameworks, particularly ISO/IEC 27001:2022. Experience with SOC 2 and NIST is also highly valued

• You have a solid understanding of threat management principles, risk assessment methodologies, and the broader security compliance landscape

• You're a natural collaborator and communicator, able to explain complex compliance topics to colleagues from different departments

• You are organized, self-driven, and comfortable managing projects from start to finish

• You have a problem-solving mindset and can think critically about how to best integrate security practices into business operations

• Proficient verbal and written communication skills in English

• You must be based in Europe
  
  

Bonus points if:

• You have experience with or knowledge of the Digital Operational Resilience Act (DORA) and / or NIS2 Directive

• You have a strong interest in AI and its applications in compliance, legal tech, or risk management

• Yearly gross salary range: $50,000 - $70,000

• Remote-first culture with the team working remotely from all over the world

• International health insurance provided with coverage in most countries. Monthly healthcare payout available in select countries where coverage is limited

• Company-paid retreats. Once per year we gather for a week in an exotic location to work, learn and have fun together

• 31 days of vacation per year. We encourage you to unplug and recharge!

• 12 paid sick days for your physical and mental well-being, no doctor's note required. Parents can use them to care for their sick children

• 4 creative days. One paid day off per quarter to do something creative and fun

• 12 parental days per year. Enjoy one paid day off each month to treasure time with your children

• Parental leave. Enjoy paid bonding time at 100% of your salary when welcoming a new child into your family through birth or adoption - 3 months for primary caregivers and 1 month for secondary caregivers

• Joy Budget. Annual allowance to spend on what brings you joy, starting at $1,000 per year and increasing over time

• MacBook and other tools that'll help you to do your job efficiently

• Check the full list of our awesome benefits here