Information Security Officer

at  FAIRTIQ AG

As the Information Security Officer, you will be responsible for developing, implementing, and maintaining FAIRTIQ’s security governance to protect corporate assets and sensitive data, run the Information Security risk management process and ensure compliance with legal, regulatory and contractual requirements.
This role involves managing compliance, governance, risks, and operational security tasks, ensuring that our security posture meets industry practices and FAIRTIQ is a trustworthy partner.

YOUR QUALIFICATIONS

• Languages: German and English proficiency; French is a Plus.
• Bachelor’s degree in Information Security, Computer Science, or a related field.
• Minimum of 5 years of experience in information security, with a focus on compliance, governance, and operational security.
• Professional certifications such as CISSP, CISM, CISA, or equivalent.
• Strong knowledge of security frameworks and standards (e.g., ISO 27001, NIST).
• Experience in Security Training and Awareness.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills, with the ability to effectively convey complex security concepts to non-technical stakeholders.
• Experience in the Information Technology domain.
• Based in Switzerland.

At FAIRTIQ, we believe that our employees are our biggest asset. A healthy culture, based on respect, inclusion, diversity and individual empowerment is the key to our success story.

• Dynamic and international work environment;
• Chance to be part of a fast growing, international startup;
• Budget and support for self-improvement;
• Creativity and innovation boosters with our “Tech Joker Days” (work on whatever you think may help FAIRTIQ);
• Lots of leadership opportunities (tech, people);
• Flexible working hours & fully remote work;

Please apply in English exclusively.
At FAIRTIQ, we don’t just accept difference, we celebrate it, we support it, and we thrive from it for the benefit of our employees, our products and our community. FAIRTIQ is a proud equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability or gender identity.
Data Protection - Your personal data will be held by Fairtiq for a maximum of 12 months. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. Please contact dataprotection@fairtiq.com if you wish for your data to be removed.

• Compliance and Governance:
• Develop and maintain information security policies, procedures, and standards in alignment with industry best practices and regulatory requirements (e.g. ISO 27001, NIST).
• Conduct regular security audits and assessments to ensure compliance with internal policies and external regulations.
• Coordinate with legal and compliance teams to address data privacy and protection requirements.
• Risk Management:
• Develop and maintain the Information Security Risk Management programme.
• Perform risk assessments to identify potential security threats and vulnerabilities.
• Develop and implement risk mitigation strategies, maintaining a risk register and tracking remediation efforts.
• Provide regular reports to senior management on security risks and the status of risk mitigation efforts.
• Operational Security:
• Oversee the implementation and maintenance of security controls to protect corporate IT infrastructure and location data.
• Monitor and analyse security incidents, managing incident response and remediation processes.
• Internal Consulting.
• Awareness and Training:
• Develop and deliver security awareness training programs for employees to promote a culture of security.
• Stay informed about the latest security trends, threats, and technologies, ensuring continuous improvement of security practices.
• Collaboration and Coordination:
• Collaborate with teams throughout the company to ensure security is part of the company culture and daily processes.
• Collaborate with the Tech team’s security representative to ensure strategic alignment of security initiatives in tech and non-tech domains.
• Act as a liaison with external security vendors and partners, managing third-party security assessments.
• Participate in industry forums and groups to stay abreast of emerging security trends and share knowledge.