Security & Compliance Specialist (all genders)

Job Details

• Location: Vienna
• Languages: English (C1); German is a plus
• Experience: 2–4 years in Information Security, Compliance, or IT Risk
• Salary: Competitive, based on experience
• Contract: Full-time, permanent

🚀 Join fiskaly! Help Us Build Trust in Compliance & Security

Millions of people interact with fiskaly every day, even if they don’t realize it. As a B2B SaaS company, we power the technology behind digital receipts and compliance APIs. Trust and security are at the core of everything we do — from tamper-proof receipts that fight tax fraud to secure compliance platforms that scale globally.

We’re looking for a Security & Compliance Specialist to take ownership of our integrated compliance, security, and quality frameworks. In this role, you’ll help strengthen fiskaly’s governance, risk, and compliance (GRC) operations across multiple countries, You’ll be the driving force in ensuring fiskaly meets and exceeds security, privacy, and regulatory standards while supporting our international growth, working closely with senior colleagues, engineering, and product teams.

💼 The Role

We are looking for a security professional who understands that the future of compliance is automated, not manual. In this role, you will help maintain our ISMS and QMS, but with a focus on efficiency.

You won't just write policies; you will design workflows. You won't just chase people for audit evidence; you will help implement systems that collect it automatically. We want you to leverage modern GRC tools and AI assistance to handle the heavy lifting of documentation, allowing you to focus on real risk management and strategic alignment with our engineering teams.

🛠️ What You’ll Do

• Maintain and improve our Information Security Management System (ISMS) and Quality Management System (QMS), moving away from static documents toward dynamic, integrated frameworks
• Coordinate internal and external audits (ISO 27001, ISO 9001) by leveraging automated evidence collection where possible to reduce manual administrative overhead
• Monitor regulatory developments (such as NIS2 and GDPR) using intelligent research tools to quickly identify gaps and translate them into internal actions
• Streamline vendor risk management by utilizing tools to analyze third-party security documentation and assess risk scores efficiently
• Collaborate with cross-functional teams to embed "Security-by-Design" principles, ensuring compliance requirements are integrated into Jira workflows rather than treated as an afterthought
• Contribute to incident response readiness and reporting, ensuring our playbooks are up-to-date and actionable
• Use AI-assisted writing tools to draft, update, and standardize security policies and procedures, ensuring they remain clear and accessible to the entire company
• Conduct internal awareness sessions that go beyond standard slides, creating engaging, relevant content for our tech-focused team

✨ What You Bring

• 2–4 years of experience in Information Security, IT Risk, or Compliance, with a solid understanding of the "why" behind the controls
• A familiarity with ISO 27001, ISO 9001, and GDPR, with a curiosity or exposure to upcoming frameworks like NIS2
• A "Tech-First" mindset with a willingness to use modern GRC platforms and AI productivity tools to automate routine compliance tasks
• Basic knowledge of risk management frameworks (e.g., ISO 31000, COBIT) and an ability to prioritize risks based on business context, not just theoretical severity
• A proactive, detail-oriented nature with strong organizational skills, preferring to build a sustainable process rather than a temporary fix
• Excellent communication skills in English are mandatory, as you will need to explain compliance needs to developers and stakeholders; German is a plus

💡 What We Offer

• A chance to learn and grow in compliance and security within a fast-growing SaaS company
• Mentorship and development opportunities from experienced colleagues
• A highly collaborative and international team that values trust, growth, and transparency
• Competitive salary and benefits package
• Flexibility: hybrid/remote setup, modern tools, and a strong culture of autonomy
• Support for further certifications and professional development

🌍 Why fiskaly? 

We’re not just building tech,  we’re shaping the future of digital compliance. At fiskaly, we believe in trust, shared vision, and celebrating success together. If you want to grow your career where security meets innovation, we’d love to hear from you.