Information Security And Privacy Associate

Penneo A/S

København, Capital Region of Denmark, Denmark Hybrid remote

Part time



Apr 26

Who are we?

We are Penneo, and we are on a mission to scale!

Penneo is a fast-growing RegTech (Regulatory Technology) SaaS company headquartered in Copenhagen, Denmark. 

Penneo started with three people who had the ambition of reducing the hassle of getting documents signed by delivering a digital signature platform. Then, we evolved into a set of solutions for automating workflows related to client onboarding (KYC), signing, and document management.

Following our listing on Nasdaq Copenhagen Main Market in April 2022, we are now, more than ever, in a position to execute our European expansion strategy and scale our operations to maximize value to our existing and future customers.

Who are we looking for?

At Penneo, we are always looking to forge new long-term relationships with people who resonate with our culture and values and are passionate about getting Penneo to the next level.

Do you want to be part of it?

We are now hiring an Information Security and Privacy Associate who will assist in operating and developing the internal organization around Information Security and Privacy. In collaboration with the Legal & Compliance team, you will be responsible for operational tasks, helping to get Penneo successfully through audits and improving internal processes and controls.

You will report to our Director of Legal & Compliance, Christel, and have our awesome team members of Legal & Compliance as your closest collaborators.

The position is part-time, based in Copenhagen.

We offer a flexible working hours model, allowing for work-life balance, while also requiring regular in-office presence. Join our team and contribute to our information security and privacy efforts!

What would be your responsibilities?

The Information Security and Privacy Associate's primary focus area will be Penneo’s Information Security and Privacy Management System (ISMS). This system is owned by Legal and Compliance. The ISMS supports the processes and controls audited according to ISAE 3000, eIDAS, and, in the future also, ISO 27001 and ISO 27701.

The Information Security and Privacy Associate will support in operating and developing of the ISMS:

  • Update and maintain information on internal documentation needed for certification/audits;
  • Follow up with control owners;
  • Operate processes and controls under the supervision of the Information Security Manager and Director of Legal (e.g., onboarding and offboarding, access management and reviews, asset management);
  • Vet new it-tools, and keep the information updated.

Other tasks:

  • Help respond to customer requests for information and our compliance reports;
  • Help colleagues within Penneo with compliance questions;
  • Develop awareness training.

What makes you a great match?

We believe that the following traits and experiences are essential for becoming successful in this role, and it is the basis upon which we assess candidates. However, we acknowledge that talent takes many forms, and we would still like to hear from you, even if you don't think you match all the points below.

We expect you to:

  • Have a good understanding of Information Security and be familiar with ISO 27001;
  • Have a good understanding of privacy and be familiar with GDPR;
  • Be good at creating structure and keeping an overview;
  • Be a team player with coordination and communication skills.

How will this role progress?

It is important to us to be as transparent as possible and to allow you to level expectations for the role. Therefore, we share our impact description in advance and would love your thoughts about it in your cover letter.

During the 1st week, you will:  

  • Meet the team
  • Get an introduction to internal processes, tools, and materials;
  • Fulfill onboarding requirements;
  • Get acquainted with the values and mission of Penneo.

During the 1st month, you will:

  • Get closer to your colleagues and understand who is doing what;
  • Get comfortable with the day-to-day operations of the Legal and Compliance Team;
  • Understand the problems Penneo solves for customers.

Within 3 months, you will: 

  • Take ownership of operational tasks;
  • Take on smaller projects and drive progress;
  • Assist in preparations for audits and certification processes.

Within 6 months, you will:  

  • Contribute to further development and continuous improvement of the Information Security and Privacy Management System;
  • Take on larger projects and drive progress;
  • Take ownership of specific processes.

Within 12 months, you will:  

  • Establish yourself as a go-to person for the rest of the organization to help with Legal and Compliance questions.

At this point, we want to support you in expressing your ambitious growth aspirations, and we're eager to learn on the journey with you. It all depends on your capabilities for continuous learning and, equally important - your dreams for the future.

By now, we hope you're sitting with a smile on your face, ready to apply and contribute to the Penneo adventure.

About our interview process:

We know that going through a recruitment process can be pretty demanding sometimes, so we want you to know what to expect:

  • Call with a member of our Talent Acquisition Team (~30m): introduction to the company, mutual initial expectation leveling.
  • Call with our Information Security Manager, Fredrik & Director of Legal & Compliance, Christel (~45m): Getting to know each other, assessing for mutual fit, and introduction to the impact and goals for the position.
  • Collaboration round (~1h): With two team members, you will discuss your approach to a problem scenario to assess collaboration fit and working methods.
  • The practicalities (~45m): Closing talk with Director of Legal & Compliance, Christel: agreeing about compensation, starting date, and all other practical details.

All of our interviews can be conducted remotely, scheduled via email and Google Meet for audio/video calls if you prefer.

Best of success with your application!

We are screening and interviewing on an ongoing basis. If you are interested in any of our roles, please do not hesitate to submit your application.

Penneo is an equal opportunity employer. All aspects of employment, hiring, and promotion are based on merit and business needs. We do not discriminate based on race, color, religion, marital status, age, national origin, physical or mental disability, medical condition, pregnancy, gender, sexual orientation, gender identity, or expression.

Please be aware that if hired, as part of our Background check, we require a copy of your criminal record. We do that to ensure that we remain a trusted service provider and partner as well as to comply with relevant compliance requirements such as ISO27001.

Apply for this position Back to job

You must be logged in to to apply to this job.

Penneo A/S

We want to make it easy to do the right thing. Come be a part of it! #inthistogether