

Hallo, ich bin Paul. Schön, dass Du da bist und Dich bewerben möchtest. Du kannst dich direkt bei mir im Chat bewerben oder das Formular ausfüllen.
We're looking for a Technical Compliance Engineer to own and drive our compliance posture across multiple frameworks and regulations. You'll be the go-to person for everything related to ISO 27001, SOC 2, GDPR, and the EU AI Act — from building internal tooling and automated monitoring to leading certification audits end-to-end. What you'll do:
Own and maintain our ISO 27001 and SOC 2 compliance programs, including policy management, risk assessments, and internal audits
Ensure ongoing GDPR compliance — data processing documentation, DPIAs, and data subject request workflows
Monitor and implement requirements from the EU AI Act, including risk classification, transparency obligations, and technical documentation for our AI systems
Build and maintain compliance monitoring tools and dashboards (automated evidence collection, control tracking, audit trails)
Lead external certification and audit processes — coordinate with auditors, prepare documentation, manage remediation
Collaborate with Engineering, Product, and Legal to embed compliance-by-design into our development lifecycle
Stay ahead of regulatory developments and translate them into actionable technical requirements
3+ years of experience in technical compliance, security engineering, or GRC roles
Hands-on experience with at least two of: ISO 27001, SOC 2, GDPR, EU AI Act
Ability to write code/scripts for compliance automation (Python, SQL, or similar)
Experience with compliance tooling (Vanta, Drata, OneTrust, or similar platforms)
Strong understanding of cloud infrastructure security (AWS/GCP/Azure)
Excellent communication skills — you can translate regulatory requirements into engineering tasks
Fluent in German and English