In the ever-expanding world of digital transformation, we secure the new society that emerges. Nexus’ Smart ID solutions and IoT platforms are transforming how we perceive trusted identities. We provide cutting edge technology to high demanding global clients. Do you want to be a part of our journey?
Nexus, a part of the French IN Groupe, is a European leader and innovative identity management company. We secure society by enabling trusted identities for people and things. With 300 employees, some would consider us a smaller company, but we have the privilege to protect workforce and IoT solutions for world class customers. This is something we are proud of, and our clients have chosen us because of who we are and for the technical solution we provide.
Our CEO, Olivier, is now looking to strengthen Nexus’ efforts in security and compliance and we are therefore looking for a talented Compliance Manager. The team is global, you will report directly to Olivier and work closely with both the Nexus Management team and our colleagues in IN Groupe. This position is based in either Stockholm (Telefonplan) or in Germany (Ettlingen, near Karlsruhe).
What will you be doing at Nexus?
As compliance is key in the security industry, you will play a very important role in Nexus! Which areas of compliance you will focus on depends on your interests, previous skill sets and the needs of our internal and external stakeholders. Some areas you will cover are supporting our sales and legal departments to ensure we live according to our contracts and customer expectations. This can involve everything from ensuring we are compliant with our previous certifications (ISO27001, TISAXs) to make sure we succeed in future certifications (an aspiration of ISO9001 certification is on the horizon). You will lead Nexus GDPR-work forward and you have the role of Nexus’ Data protection officer.
Don’t worry, you will not be alone. You will collaborate closely with our CISO, general counsel and your expert colleagues in IN Groupe. One thing is sure, in this role at Nexus you will not only sit at your desk and write policies (even though it is of course an important part of the role) – you are the spokesperson for your area and you ensure to stay close to the business at all times.
We take compliance seriously and we also see information security and GDPR as a business opportunity for our solutions and you will take part in product and service development iterations as the data protection and data privacy expert to advise for the best possible trusted user experience.
The role in bullets
- Take the lead in relevant compliance areas, support sales and legal department to ensure we live up to our promises and external expectations,
- Collaborate and build a level trust with stakeholders that allows for transparency and collaboration,
- Prepare periodic internal reviews or audits to ensure that procedures are followed,
- Coordinate needed controls, audits and measures as penetration tests and vulnerability scans with our product and operations team (internal and external),
- Drive GPDR compliance areas and report back to Nexus management. Help us develop KPIs to measure continuous improvements against business objectives.
- Lead on ISO 9001 implementation/certification project.
Who are you?
People around you seem to think you are a bit nerdy regarding information security, compliance framework and the fact that you have a poster of the principles of International Organization for Standardization in your room. We will love this about you, and you will have the opportunity to spread your knowledge as the Compliance prophet at Nexus.
To be successful in your mission at Nexus we think you’ve held a similar role before! Being in a security company within an international high-tech environment is quite complex, so some years in the field before you join is needed. During these years you have learned how to get people around you engaged when you talk about data protection, and you know when to be pragmatic and when to push through. You get people to listen and follow through your ways of working rather than through a chain of command. You love inspiring engineering teams and building partnerships with multiple stakeholders.
If we would dream freely, we’d say you have deep GDPR knowledge, you have worked with ISO27001, ISO9001 and TISAX. But as we know that might be a bit unrealistic, we are happy if you have experience in at least a few of these areas.
Last but not least you need to be unhindered in English and if you also speak Swedish or German this is a very big plus.