Location: Madrid (other locations in Spanish territory can be evaluated) | Full-timePosition Summary/ObjectiveDeNexus is solving actionable cyber-risk management with our DeRISK Software as a Service (SaaS) offering to enhance the decision making of industrial operation risk owners.
We are seeking a Compliance Specialist to ensure our products, services and internal practices adhere to regulatory requirements and industry standards, with a primary focus on SOC2 and ISO27001 compliance.
DeNexus DeRISK is fundamentally a tool for risk-minded business users; however, there are security technical fundamentals that necessitate the involvement of a compliance specialist to capture and define requirements from uprising regulations and compliance frameworks including NIS2, NIST CSF, NIST CAF, and IEC 62443.The compliance specialist is expected to drive DeNexus' compliance posture to ensure the company adheres to applicable laws, regulations, standards, and internal policies.
They must have a deep understanding of relevant regulations and industry standards applicable to the organization, and the ability to interpret these regulations, and ensure that the organization understands its legal obligations.Responsibilities/Duties:Manage and maintain internal compliance programs, policies, and procedures, with a specific emphasis on SOC2 and ISO27001.Conduct regular audits and assessments to evaluate compliance with established standards and regulations.Collaborate with internal teams to identify compliance gaps and develop and lead remediation plans.Assist in the preparation of documentation for audits, certifications, and assessments.Participate in cross-functional projects to integrate compliance requirements into business processes and systems.Assist in the Customer Security and Compliance Screening process.Regulatory RequirementsMonitor changes in regulatory requirements and industry standards, ensuring timely updates to compliance processes.Serve as a subject matter expert on compliance matters, providing guidance and training to relevant stakeholders.Support the implementation of new compliance initiatives and frameworks, including NIS2, NIST CSF, CAF, and IEC 62443, where applicable.Stay abreast of emerging trends and best practices in compliance and information security.Product ComplianceGather compliance and regulatory requirements from the Customer Success Team and assist with product leadership team to ensure these are being translated into the product roadmap for DeNexus.Qualifications/Requirements:Bachelor's degree in a relevant field (e.g., Information Security, Compliance, Business Administration) or equivalent experience.Minimum of 3-5 years of experience in a compliance-related role, preferably in the technology or cybersecurity industry.In-depth understanding of SOC2 and ISO27001 standards, including hands-on experience with implementation and maintenance.
#J-18808-Ljbffr