Senior Information Security Specialist (all genders)

Our client:
An innovative technology company operating in the legal compliance space, focused on delivering automation-driven solutions for information security and data protection. Founded in 2018, the business has grown rapidly and now generates approximately €5M in annual recurring revenue. With around 40 employees, the company is in a post-seed stage and preparing for a Series A funding round in 2026.
The role sits within the Compliance Services Team, which includes 4 in-house specialists, a team lead, a working student, and about 15 external consultants. The team lead reports directly to the COO, ensuring close collaboration with senior leadership.

The organization promotes an entrepreneurial culture, values accountability, and encourages creative problem-solving. Flexibility and autonomy are core principles, balanced by a strong focus on results. The company is committed to an "automation-first" approach and is currently transitioning toward a more structured, professionalized environment.

Position: Senior Information Security Specialist (all genders)
Location: Remote within Germany (4x per year travel to Hamburg)
Estimated Salary: 70.000€-90.000€* base
Languages: Fluent German (C1+) and proficient English (B1+)

Travel: estimated about 10% around Germany

Key Responsibilities:

• Provide expert guidance to clients on information security and data protection matters
• Design, implement, and enhance information security management systems (ISMS) aligned with standards such as ISO/IEC 27001, TISAX, NIS2, and DORA
• Advise on frameworks and organizational structures, including records of processing activities, technical and organizational measures, and contractual compliance
• Support clients in achieving certifications or meeting regulatory requirements under GDPR, BDSG, and related legislation
• Perform assessments and audits to evaluate compliance maturity and identify areas for improvement
• Assist clients in leveraging the company's compliance platform to streamline processes and automate workflows
• Contribute to the development of platform content and features, including templates, best practices, and automation logic
• Collaborate with internal teams and external experts to deliver comprehensive compliance solutions
• Optionally act as an external Data Protection Officer or Information Security Officer for selected clients
• Provide mentorship and take responsibility for complex client engagements

Profile Requirements

• Degree in a technical, legal, or business discipline, or equivalent professional experience
• Proven experience in data protection (GDPR) and/or information security, ideally in consulting, auditing, or corporate environments
• Hands-on expertise in implementing and improving ISMS (ISO 27001, TISAX) and/or DSMS
• Strong IT affinity and ability to work independently with a structured approach
• Fluent German (C1+) and solid English skills (B1+) for client communication
• Relevant certifications such as ISO/IEC 27001 Lead Implementer/Lead Auditor, TISAX, CISM, CISA, or
• Data Protection Officer are advantageous
• Familiarity with collaboration tools is a plus

What's Offered

• Dynamic work environment with significant opportunities for personal and professional growth
• Permanent position with flexible working arrangements, including remote options within Germany
• Modern office facilities in Hamburg and access to co-working spaces (dog-friendly)
• Unlimited vacation policy

If you are interested in discussing this role in a more detail - please apply with your current CV in PDF format, or reach out to lyss.moss at selbyjennings.com.

We'll be looking forward to your application. Please note that only applicants whose profile matches the requirements will be contacted. Your application will be treated confidentially.