Information Security Officer (all genders)

at  Doodle

Doodle is the world’s leading scheduling platform, helping millions of people instantly set meetings with clients, colleagues, and teams. Tapping into the unique nature of smart scheduling, Doodle simplifies the planning of 1:1 and group meetings for busy professionals. As the world’s most trusted online scheduling platform, Doodle attracts more than 25 million visitors each month. Now’s your chance to join 100+ ambitious engineers, designers, product managers, marketers and salespeople on a mission to make great meetings happen. Doodle is headquartered in Zurich, with offices in Belgrade and Berlin and some colleagues working remotely from the US.
To secure our infrastructure and services, and protect our customer data, we are in
pursuit of a risk-minded, cloud-focused

• Identify new security developments, requirements and risks and take the lead in ensuring these are actioned by the business in line with Doodle’s risk appetite
• Drive security awareness training for general staff and specialized roles
• Maintain information security policies for key control areas in line with industry best practices
• Collaborate with various teams on maintaining the security roadmap
• Lead the discussions for current implementations of ‘security by design’ and ‘privacy by design’ in our products
• Coordinate and oversee information security compliance audits and assessments (e.g., supplier risk assessments, SOC 2 Type II, penetration testing, external audits, etc.)
• Provide key inputs into business resilience, working across functional verticals on business continuity management and disaster recovery planning
• Oversee the development and maintenance of policies, standards, and procedures
• Support the CISO with the annual planning and budgeting, management reporting and risk governance meetings
• Assist in identifying and improving security controls in the CI/CD pipeline