Remote Security & Compliance Lead

Description:

• As Security & Compliance Lead at Didask, you will serve as our Information Security Officer and Data Protection Officer (DPO), representing Didask both internally and externally on all security and compliance matters.
• Your mission is to ensure we operate at the highest standards while maintaining our agility, by selecting and implementing the right frameworks for security, privacy, and quality.
• You will define and implement our security strategy, lead risk assessments, and business continuity planning.
• You will build and maintain our security program, including training and incident response, and partner with engineering teams on security controls implementation.
• You will serve as Data Protection Officer, maintain our ISO 27001 certification, and manage our compliance platform (Vanta).
• You will define our certification roadmap based on market requirements and handle data subject requests and regulatory inquiries.
• You will oversee our Qualiopi certification for professional training, define and monitor training quality indicators, and ensure compliance with professional training regulations.
• You will drive our product accessibility compliance and partner with engineering teams on quality standards implementation and SLA monitoring.
• You will implement quality assurance processes for AI-generated content and monitor AI system outputs for compliance with our standards and upcoming regulations.
• You will lead security questionnaire responses for enterprise prospects and create and maintain compliance documentation.

Requirements:

• You must excel in a transparent, written-first environment and have experience fostering a security-minded culture across an organization.
• You should take ownership of your domains while knowing when to involve others and be proactive in identifying and addressing issues.
• You must have exceptional ability to present security and compliance topics to diverse audiences and experience addressing enterprise prospects' concerns during sales cycles.
• You should possess a strong understanding of security, privacy, and training requirements, including ISO 27001, GDPR, AI Act, and Qualiopi.
• You must have experience with cloud security architecture and service reliability engineering, as well as familiarity with quality monitoring and incident response practices.
• You should have experience with enterprise SaaS contracts and service level agreements, and an understanding of B2B SaaS business models and enterprise sales cycles.

Benefits:

• The position is full-time and offers the flexibility of remote work, allowing you to work from anywhere in a timezone close to France.
• You will be part of an innovative company that combines advanced research and AI to make impactful learning accessible to all.
• You will have the opportunity to shape the future of education and contribute to meaningful projects in the EdTech space.
• You will work in a transparent and collaborative environment that values clear documentation and asynchronous communication.