• This role combines technical expertise, investigative focus, and process leadership - ensuring that our systems, data, and people remain secure, compliant, and resilient
• Maintain and continuously improve the ISO/IEC 27001:2022 Information Security Management System (ISMS)
• Work closely with the CTO, Head of IT, and DevOps to enhance internal security controls
• Conduct internal audits, risk assessments, and coordinate certification renewals
• Update security policies and controls in line with ISO 27001, GDPR, and relevant international frameworks (e.g., NIST CSF and NIS2 principles where applicable)
• Manage integrations and alerting within Datadog SIEM, CrowdStrike, Cloudflare, and Google Workspace
• Support DLP implementation and maintain central tracking of security events
• Document risks, incidents, and corrective actions to ensure continuous compliance
• Incident Response & Investigation
• Lead investigations into security incidents such as phishing, data leakage, or unauthorized access
• Collect and analyze digital evidence across systems (CrowdStrike, Cloudflare, Google, Slack)
• Maintain and enhance incident response playbooks and escalation workflows
• Collaborate with HR, Legal, and IT teams during internal investigations
• Produce post-incident reports and recommend remediation measures
• Endpoint & Access Security
• Maintain CrowdStrike Falcon configurations and endpoint posture enforcement

Perform Quarterly RAS Access Management Reviews

• Foster a strong Security-First mindset across the organization
• Manage MDM systems (Zoho MDM, Endpoint Central) and ensure full compliance for macOS endpoints
• Implement Just-in-Time (JIT) privilege elevation and regular admin access reviews
• Maintain a consistent audit trail for access management throughout the year
• 3+ years of experience in information security, IT audit, or digital investigations
• Solid understanding of ISO 27001, GDPR, and modern security frameworks (NIST CSF / NIS2)
• Hands-on experience with SIEM / EDR systems
• Proven ability to manage SSO, MFA, DLP, and MDM environments
• Strong communication skills in English (B2 or higher)
• Analytical mindset, integrity, and attention to detail

Technical interview with Service Desk & Security Lead - 60 min

Oversee SSO, MFA, and 2FA enforcement across services (Google SSO, DUO Mobile, 1Password)

• Competitive compensation package (with performance-based bonuses up to 50%)
• Unlimited paid vacation & sick leave (B2B model)
• Premium health insurance (for you + 1 family member)
• Learning & development support (courses, certifications, mentoring, conferences)
• Remote-first with flexible working arrangements across Europe or Ukraine

International exposure attend industry expos, team gatherings & global meetups