About IriusRisk

IriusRisk is the world’s leading automated threat modeling tool (*our grandma says so). Born out of a desire to advance threat modeling as an activity and ensure that software is secure from the design stage. IriusRisk helps the largest banks and technology providers build their software. Yep, that’s right, the team builds the tools that build the world’s software.

A scale-up with large enterprise clients that retains a fast-paced, agile, get-things-done, start-up mentality. A place where everyone’s ideas are welcomed, valued, and challenged, meaning the entire team has the opportunity to change how software is built securely at the very largest scale. We also love a meme.

Purpose of the Role

We are seeking a Compliance Assistant to join our cutting-edge cybersecurity start-up, where innovation meets compliance in a fast-paced and ever-evolving regulatory landscape. This global, cross-functional role supports the Compliance Officer in ensuring adherence to applicable laws, regulations, and customer-imposed obligations. Key areas include data protection laws such as GDPR, and emerging standards for Artificial Intelligence (AI). You will also assist with corporate policies covering Criminal Compliance, Environmental, Social, and Governance (ESG) initiatives, Intellectual Property and cybersecurity frameworks like ISO 27001.

As a small and agile company, we value team members who are eager to tackle new challenges, think creatively, and continuously expand their skills. This position offers the opportunity to play a pivotal role in shaping compliance across all areas of our business, ensuring ethical and legal excellence while fostering a culture of integrity.

We’re looking for someone who can “seal the deal” on contracts and ensure nothing is “out of order” in compliance.

Duties & Responsibilities

• Assist in the development, implementation, and maintenance of corporate compliance policies and procedures: Data protection (applicable data protection regulations in the EU, UK and US), Cybersecurity, Artificial Intelligence, Criminal Compliance, Environmental Social and Governance (ESG), Intellectual Property, etc.
• Analyse the applicability of regulations and assist in the creation and development of a compliance plan.
• Review NDA/MNDA, Data Protection Agreements (DPA), software licensing contracts (EU, US and other jurisdictions), partner agreements, and other contracts or T&Cs to ensure compliance with regulatory requirements and company policies.
• Provide support in the third-party risk management program by analyzing potential suppliers from compliance and data protection perspectives and assessing their suitability against company standards.
• Assist in coordination and completing compliance and security questionnaires and providing evidence for customer procurement and due diligence procedures.
• Support the development and delivery of compliance training programs, promoting awareness of compliance, data protection, and AI within IriusRisk.
• Conduct research and maintain accurate, up-to-date compliance documentation and reports.
• Resolve internal compliance queries, providing cross-departmental support as needed.
• Adapt to new challenges, taking on additional responsibilities aligned with company growth, regulatory changes, and internal or external needs.
  
  

What We Offer

• 100% remote work!
• Great team collaboration between departments.
• An Agile development environment!
• We have a “Do it well” DevOps culture and we don’t fear investing time to do things right the first time.
• Training and certifications related to your role.
  
  

Requirements:

Essential Experience

• Law degree.
• Master’s degree in data protection, Artificial Intelligence, commercial business law, tech law, digital law or related field.
• Proficiency in English (C1 level or higher).
• At least 2 years of experience in a similar role, with knowledge of data protection, corporate compliance, AI regulations, and related activities.
• Interest in cybersecurity and tech.
  
  

Desired Experience

• Experience in a compliance, legal, or regulatory role within an international or diverse environment.
• Experience reviewing software licensing contracts (EU and US jurisdictions).
• Certifications in data protection, corporate compliance, or AI are advantageous.
  
  

Person Requirements

• Proactive, self-motivated, and eager to learn.
• Creative thinker with the ability to adapt and solve complex challenges.
• Strong organizational and time management skills.
• High attention to detail and a commitment to accuracy.
• Professional conduct with a strong sense of integrity and accountability.
• Excellent communication and interpersonal skills.
• A team player with a positive attitude and a collaborative mindset 🙂.