Director of Information Security
Posted about 18 hours ago
About the role
We are seeking an experienced and dynamic Director of Information Security to lead our organization's information security and compliance efforts. This role is responsible for developing and implementing a robust information security management framework, automating security operations through modern GRC tooling, and ensuring compliance with industry standards and regulations.
The ideal candidate will be passionate about information security and compliance, with the ability to lead our organization through evolving security challenges and increasing customer data protection requirements. They will play a crucial role in fortifying our rapidly expanding scale-up, communicating clearly across every level of the business, and collaborating across departments to ensure a strong security posture. As AI becomes more deeply embedded in our products and operations, this person will also help shape how we secure and govern those systems.
About DataSnipper
Audit and finance are still massively manual and we are changing that. DataSnipper is a $1B, bootstrapped unicorn with 600,000+ users across 180+ countries, already embedded in the daily workflows of top audit and accounting firms.
Now, we are taking things further with our Excel Agent, bringing AI directly into where the work actually happens. Unlike generic AI tools, we do not sit on the sidelines. Our AI operates inside Excel, with access to real documents and audit evidence, meaning it does not just generate answers, it does the work, with full traceability.
We are not just applying AI, we are redefining how audit gets done. If you want to build something category-defining at scale, this is the place.
What You Will Do
Maintain and iterate a comprehensive information security management system aligned with organizational goals
Lead, mentor, and develop the information security team
Own and administer our GRC platform (e.g., Vanta) to automate evidence collection, continuous monitoring, and audit readiness
Implement and manage automated security and compliance tooling to streamline operations and reduce audit complexity
Develop and maintain compliance programs in line with relevant standards (SOC 2, ISO 27001, and others as the business grows)
Manage SOC 2 and ISO 27001 audit processes and other relevant compliance frameworks
Prepare security and compliance documentation for internal and external stakeholders
Monitor changes in technology, threats, and regulations, and update policies and controls accordingly
Collaborate closely with the product and engineering teams to ensure secure and compliant development practices
Establish governance and security practices for the organization's use and development of AI systems
Oversee security measures for upcoming product innovations and evolving security requirements
Address client inquiries regarding product and organizational security, and support sales and customer-facing teams on security and trust reviews
Provide strategic guidance to executive leadership on risk management and compliance initiatives
Conduct employee training and awareness programs on information security
Serve as the primary point of contact for auditors and external stakeholders
What You Bring
Bachelor's degree in Computer Science, Information Technology, or a related field; Master's degree preferred
Relevant certifications such as CISSP, CISM, or CISA
Extensive experience in information security, data privacy, and compliance frameworks (SOC 2, ISO 27000 series, GDPR, FedRAMP)
Hands-on experience administering a GRC platform, with Vanta strongly preferred
Demonstrated experience preparing for and managing audits across multiple frameworks; familiarity with ISO 27001, SOC 1/SOC 2, and FedRAMP is a strong advantage
Experience with AI security, governance, or risk frameworks (e.g., securing AI/ML systems, NIST AI RMF, ISO 42001) preferred
Technical background in application security and familiarity with shift-left practices
Strong knowledge of IT and cloud security, including expertise with Active Directory and major cloud platforms (Azure, AWS, or GCP)
Excellent leadership, communication, and stakeholder-management skills, with the ability to explain complex security concepts to technical and non-technical audiences alike
Strategic thinker with the ability to align security initiatives with organizational goals
Strong analytical and auditing skills
What We Offer
Be part of one of the fastest-growing, profitable unicorn scale-ups in the Netherlands with a global impact
Equity (Stock Appreciation Rights) to share the company's success and growth
Pension plan with a 6% contribution on top of your base salary
28 vacation days per year (full-time) to support your work-life balance
Hybrid work model with at least 3 days onsite in our Amsterdam office
Daily, freshly prepared lunches by our in-house chef to keep you energized
NS business card for easy commuting to the office
Access to continuous learning and development initiatives to grow your skills
Engage with a vibrant international team spread across five global offices
Company-wide events like DataSnipper GO where global teams come together
Access to OpenUp, a mental health and wellness platform supporting your wellbeing
Friday drinks and various social activities are designed for team bonding and fun
If this sounds interesting, apply now, we can’t wait to meet you!
Other open roles at DataSnipper(6)
We empower Audit and Finance teams worldwide, innovating together as we grow. Join us and shape the future.
Key team members

Vidya Peters
Jobr aggregates jobs directly from company career portals — no middlemen. Our team applies on your behalf with AI-tailored resumes, reviewed by a human before submission.