Information Security Officer

🏠Remote-first and based in either the UK 🇬🇧, Spain 🇪🇸,Ireland 🇮🇪, or Germany 🇩🇪

Engineering is at the heart of what we do at Chronomics and our API first approach drives everything. We are using technology to disrupt science and empower people with their health data.

🧬 Who we are:
At Chronomics, we are building a bio-infrastructure platform to power the use of biomarkers in everyday life. We are on a mission to “make the unseen actionable”.
We reduce the cost, time and complexity of bio-science by automating logistic, sample collection and presentation of results through our seamless API-driven solution.

We power diagnostics for tele-health, create scientific diet plans, transform how people sleep, customize skincare routines, track the biological impact of fitness programs - all so innovators in every industry can add value to their users.

We are a remote-first company with hubs in London 🇬🇧 and New York 🇺🇸, and employees working from various places in the UK 🇬🇧, Ireland 🇮🇪, Spain 🇪🇸, Germany 🇩🇪, Serbia 🇷🇸, the US 🇺🇸 and Canada 🇨🇦.

Founded by scientists from the world’s leading research universities, we have brought together an expert team across science, technology, business and operations.

We’re growing rapidly and sustainably with revenue outpacing all projections (without the need to raise money externally) and we’re trusted by industry leaders like Superdrug, and Tui… though we’re not stopping here.

Our vision is for biology data and insight to be accessible for everyone. We are at the dawn of a ‘bio revolution’ and to make that happen, we’re creating original and innovative products that allow access to biology at the software level.

🧩Where you will make a difference:

The security function here at Chronomics is constantly evolving and you will play a crucial role in the further development of our processes! Freedom to run is one of our values here and this is certainly a role where you can do just that. You will be involved in projects that will shape the security function and will support across all areas of risk, governance and compliance.

🔥 Your role will include:

• Supporting adherence to legal and regulatory compliance governing information security, data regulation (GDPR, HIPAA etc) and industry best practices (Cyber Essentials, SOC2 and ISO 27001).

• Enhancing the Chronomics InfoSec Risk Management Framework
• Supporting regular risk identifications and assessments and ensure these are documented in the risk register, tracked and remediated

• Coordinating and facilitating the information security governance forum

Requirements

🚀 What we need from you:

• Experience of security governance, risk, and compliance frameworks and practices (e.g. ISO, Cyber Essentials, SOC2, NIST, etc).
• Experience of security risk & security controls (e.g. cyber security, network, infrastructure, applications, and projects).
• Knowledge and experience of iInternal control implementation, including the evaluation of the design and operating effectiveness of controls
• A strong working history of security audit, risk and compliance.
• Advanced-level communication, presentation, and relationship management skills.
• Compliance
• Knowledge of data protection including any regional data regulation such as the UK Data Protection Act, EU GDPR

☄️ Nice to have:

• One or more relevant qualifications; e.g.: CISSP, CISM, CISA
• Any industry standards implementation such as ISO 27001, SOC2 etc

• Any formal Data protection training
• Knowledge or interest in learning about HIPAA.

Benefits

What you can expect from us:

• 🏝 Unlimited holidays (20 days minimum)
• 🏃 Fully remote work with freedom to run
• 💻 A remote-working budget to help you set up your home office
• 💪 Private health insurance
• 📝 Pension or 401k contribution
• 📍 Access to co-working spaces globally
• 🥳 Global Meetups
• 🎓 Annual Learning and Development Budget
• 📈 Meaningful equity in the company
• 💰 Competitive salary

Be your authentic self at work

As we go global, we want our team to reflect the diverse and multicultural world we live in.

So, we choose to talk about Inclusion and Diversity [in that specific order] because we believe Diversity won’t be successful without Inclusion first. We build teams, cultivate leaders and create a company that’s the right fit for every person in it.

We look forward to hearing from you!

Please note, we don't accept applications from recruitment agencies - thank you!

If you’re interested in learning more about what we do and how you could join the team, please submit your application. We appreciate experience comes in different forms and you don't always need to check every box.