🌏 Berlin / Remote
We're building the world's best AI meeting assistant. We're an early-stage, fast-moving startup looking for a GRC Engineer to build and own our cybersecurity and compliance function from the ground up. You'll be the driving force behind everything security and compliance at Jamie — from expanding our certifications to unblocking enterprise deals with bulletproof documentation.
Jamie is on a mission to create a meaningful product that writes the world's best meeting notes, powered by AI. We're driven to eliminate the burden of meeting documentation and unlock insights from conversations. We are an early stage startup working closely with initial customers to build a magical product with real-world impact.
We believe in shipping fast, learning constantly, and building a product users love.
We're looking for a GRC Engineer who can take full ownership of our security and compliance landscape. We already have a strong foundation — ISO 27001 certification, GDPR and DORA compliance, and Vanta as our compliance automation platform — but we're just getting started. As we scale rapidly into the financial industry and larger enterprise accounts, the demands on our compliance posture are growing fast.
This isn't a box-ticking compliance role. We want someone with an engineering mindset who can build scalable processes, automate tedious workflows (like security questionnaire responses), run internal penetration tests, and act as the go-to person for enterprise clients who need assurance that their data is in safe hands. You'll have a direct line to revenue — every certification you secure and every security review you nail helps us close deals.
As one of our early hires owning this function, you'll have significant responsibility and influence over how we approach security and compliance as a company.
Own the Compliance Roadmap: Maintain and expand our certifications and compliance posture. We're ISO 27001 certified and GDPR/DORA compliant today — you'll identify and drive the next certifications our enterprise customers need (SOC 2, ISO 42001, and beyond).
Enable Enterprise Sales: Be the person who unblocks deals. Prepare and maintain all security documentation, respond to customer security assessments, and represent Jamie's security posture in calls with procurement and InfoSec teams.
Automate Security Questionnaires: Build and refine systems to automate the answering of security questionnaires at scale — so we can respond quickly and accurately without it becoming a bottleneck.
Internal Penetration Testing: Plan and conduct internal security assessments and pen tests to proactively identify vulnerabilities before they become problems.
Build the Security Function: Define policies, processes, and tooling for our security program. You'll be building this from the ground up, with full support from leadership.
Manage Vanta & Tooling: Own our Vanta instance and ensure continuous compliance monitoring. Evaluate and integrate additional security tools as needed.
Ship Quality at Speed: Work closely with the founders and engineering team to embed security into our development lifecycle without slowing us down.
Engineering Mindset: You have a technical or engineering background and think in systems, automation, and scalability — not just checklists. You're comfortable reading code, writing scripts, and understanding infrastructure.