About Us:
A global SaaS leader for seamless digital document workflows, Nitro offers a suite of solutions for PDF, eSigning, identity verification and analytics supported by a best-in-class customer success and change management team. With more than 3 million licensed users and 13,000+ business customers across 157 countries, we serve 67% of the Fortune 500.
How We Work:
We aim to create an environment where talented individuals are empowered to excel. How we collaborate, innovate, and engage with one another is important to us. Our work is driven by 5 key principles:
One team, One missionOur collective dedication to Nitro's mission defines us. Together, we are building an environment where everyone feels like a valued part of something bigger than themselves.
Own itWe take full ownership of our actions and decisions. We empower one another to lead with confidence, creativity, and a solutions-focused mindset.
Accountable to our customersWe are dedicated to our customers and take our commitments seriously. We do what we say we are going to do.
Excellence in executionDriven by passion and precision, we exemplify excellence in our delivery with innovative, top-quality results.
Be bold, fail fast, learn fasterWe learn as we grow, dare to try, and bravely question. We are not chasing perfection but forever iterating towards it.
These guiding values shape our approach to work, fostering a culture where everyone is inspired to contribute their best.
The role
Currently, we are looking for an Information Security Officer to manage Nitro’s security compliance efforts. This role will report to Corporate IT & Security, which acts as first and second line of defence regarding Information Security, Data Protection and Compliance where you will operate in an international team of Information Security professionals.
This is a Trusted Role and will be subject to the checks and controls identified by Nitro for such role.
What you'll be doing:
Lead the GRC function within Nitro liaising with all relevant stakeholders.
Manage and lead all of Nitro’s compliance efforts from ISO 27001, SOC2, HIPAA, DORA and NIS operations and new requirements.
Manage and contribute toward Qualified Trust Services Provider certification (QTSP).
Contribute to the development of internal governance policies and procedures.
Facilitate and manage the security risks directly or indirectly impacting the Organisation.
Monitor local and international regulatory requirements and changes as they impact Nitro or any of its products.
Be the SME in all audits with external and internal auditors.
Perform operational checks, identify gaps and advising on mitigations.
Contribute to the privacy function within Nitro as to maintain compliance with GDPR.
Uplift the security culture of the organisation by constant communication and implementing a comprehensive training programme.
What we're looking for:
As our Information Security Officer, you need to have:
At least 5 years of experience as ISMS implementer, managing and implementing various security control frameworks.
Strong Project Management Skills with at least 3 years of experience.
Experience with information security, security certifications and risk assessments.
Working knowledge of common information security management frameworks, regulatory requirements, and applicable standards such as ISO 27001:2013/2022, NIST CSF, SOC/HIPPA, ETSI standards for eIDAS, etc.
Knowledge of information protection methodologies and concepts, such as identification and authentication, access control, audit trails.
Strong interpersonal communication and coordination skills and the ability to communicate effectively with a wide range of employees, leaders at various levels, and other customers.
Knowledge of international and local security standards.
Strong knowledge in Microsoft Office Application (Word, Excel, and PowerPoint) and One Trust.
Coordination, facilitation, consultation, and conflict resolution skills.
Skills we'd like:
It would be great if you have the following skills, too:
Higher education/relevant security certifications like ISO 27001 Lead Implementer, CISM or CISA.
Understanding of information technologies and data security.
Knowledge of the business or digital signature area and organization.
Ability to promote an information security culture within the organization.
Why Nitro? Along with our regular benefits and programs (including health, dental, vision, and retirement as standard), we are also very proud to offer a few additional initiatives to future Nitronauts: Flex Time Off Work-life balance is important at Nitro, and we understand that there are events that we cannot plan for. We are proud to offer Flex Time Off to be used for holidays, spending days with your family, or appointments. Hybrid Work Our team embraces the hybrid work model, appreciating its blend of flexibility and structure. We combine three days of in-person collaboration at our global offices in Toronto, Dublin, Antwerp, Porto, and Melbourne with the convenience of two days of remote work each week. Benefits:Nitro provides all employees with a comprehensive benefits package that includes health insurance, dental and vision coverage, and wellness perks. We also offer pension/401k matching, along with many other country-specific benefits.
Nitro strongly encourages applications from everyone regardless of race, religion, colour, national origin, gender, sexual orientation, age, marital status or disability status. We provide an accessible candidate experience and invite you to request any accommodations or adjustments throughout the interview process and beyond.
#LI_EC #LI-Hybrid