Security Compliance Expert

About us
We are EnduroSat! A fast-growing space scale-up at the forefront of satellite innovation, specializing in advanced software-flexible satellites for commercial, governmental, and scientific endeavors.

• This is more than a job, it's a mission
We are making space universally accessible and redefining the possible

• We get things done
We take ownership of what we do, and we work hard to make a difference

• We are fearless
Transparency is our only way forward. We dare to address and resolve issues head-on

• We learn from our mistakes
We deliver, take informed risks, and evolve to achieve our goals. We compare with the best version of ourselves

What is the role?
As a Security Compliance Expert, you will be responsible for developing, implementing, and maintaining a robust security compliance framework. Your expertise in regulatory requirements, auditing, and risk management will be critical to protecting our organization and upholding the highest security standards.

Some of your daily tasks will include:

• Develop, implement, and update comprehensive information security policies, procedures, and controls to ensure compliance with regulatory and contractual requirements
• Ensure compliance with regulations and standards such as NIST 800-171, the NIS 2 Directive, and the ISO 27001 family of standards
• Lead and participate in internal and external audit processes, as well as conduct compliance assessments
• Perform periodic Risk Assessments and Business Impact Analyses (BIA) to identify and prioritize security risks
• Collaborate with cross-functional teams to integrate security compliance requirements into business processes and the system development lifecycle
• Provide expert guidance on security compliance matters to management and other stakeholders
• Monitor changes in applicable laws and regulations and adapt internal policies and procedures to maintain compliance

What do we look for?

• A degree in Computer Science, Information Security, or a related field
• Proven experience (5+ years) in a senior security compliance role
• In-depth knowledge and hands-on experience with compliance frameworks and standards, specifically NIST 800-171, the NIS 2 Directive, and the ISO 27001 series
• Significant experience in creating and implementing information security policies and procedures
• Practical experience in conducting security audits and being audited by external parties
• Experience in performing security Risk Assessments and Business Impact Analyses (BIA)
• An understanding of network security, application security, and cloud security principles
• Strong leadership and communication skills, with the ability to influence stakeholders at all levels
• Relevant certifications (e.g., CISA, CISSP, CISM, ISO 27001 Lead Auditor) are highly desirable

How to stand out?

• Be open to knowledge-sharing
• Understand the importance of last-mile delivery
• Be a quick learner, proactive, and a self-starter
• Have excellent communication skills and a positive attitude
• Be passionate about space

Why EnduroSat?

• Fast-paced and delivery-focused culture 
We work with well-defined quarterly-based objectives, that allow us to fast-track the progression of our work and improve as we go

• Tough engineering challenges & hard-core R&D
You will be able to work on unique space technology and build next-gen innovations, while mentored by world-recognized space experts

• Constant learning and progression
Own your personal growth by navigating through our career progression framework and educational programs

• Chance to join our space educational program 
Meet international space experts and improve your knowledge and skillset with our hands-on educational program

At EnduroSat, we embrace diversity and strive to create an inclusive environment where everyone is treated with fairness and respect. We are committed to equal employment opportunities without discrimination against any employee or job applicant on the basis of race, color, religion, sex, national origin, age, disability, sexual orientation, or gender identity. Additionally, this position is suitable for people with disabilities in accordance with the People with Disabilities National Regulation Act, ensuring accessibility and accommodation in the workplace.