Skip to content

Information Security Specialist

  • Hybrid
    • Capital region, Uusimaa, Finland
  • Engineering

Job description

Are you a solution oriented and hands on security person keen on compliance and information security? Does joining one of Europe's most established HR tech companies backed by tier one investors sound exciting to you? Sympa is growing and looking for an Information Security Specialist to join our Engineering organisation.

  
Type: Full-time, permanent  
Location: Espoo, Finland 
Hybrid: 2-3 days per week at the office required
Starting date: As soon as possible  

 
Sympa helps some of the largest companies in the Nordics to put people at the centre of their strategy. With 1,000 customers and a strong install base, we have a strong foundation for continued growth. Our Engineering hubs are in Vantaa (Espoo beginning of June 2025), Lahti, and Poland and you would be part of a highly talented and international team of close to 60 engineering colleagues.   

 
We are looking for an Information Security Specialist to support our growing SaaS business in maintaining and developing our information security management systems (ISMS) and quality management (QMS). You will work closely with our external CISO-as-a-service partner and act as the internal contact on security-related topics.

This role is ideal for someone with a technical background looking to take the next step in their information security career—ready to take ownership and grow into a broader security and compliance position within a fast-growing SaaS company.

 
Your key responsibilities as an Information Security Specialist

  • Maintain and develop our ISMS and security framework

  • Manage our security tools such as security awareness, third party risk management

  • Ensuring compliance and security

    • Ensure data systems comply with relevant regulations and security standards

    • Develop measures to protect data privacy and ensure the security of data pipelines and analytics infrastructure

    • Conduct regular vulnerability/security assessments

    • Monitor security systems and respond promptly to security incidents

  • Drive our ISO 27001 and support future certification processes both in ISO 27001 and ISO 9001

  • Collaborate with cross-functional teams, especially within sales, IT, engineering, HR and other business units as needed to mitigate security risks and drive compliance

  • Support sales and legal in responding to customer RFP’s and security related contractual topics. Continuously update and deepen your knowledge of security related topics and understanding of Sympa’s business to fluently respond to RFP’s

  • Act as an internal security poc in coordination with CISOaaS

  • Support general quality-related work, including ISO 9001 practices, risk management and internal audits

  • Contribute to data protection and privacy compliance (DPO-related support)

  • Promote internal awareness and best practices across the organisation and provide training and guidance to employees on information security

Job requirements

What do we value in our candidates?  

The person we are looking for is highly motivated, curious and able to take responsibility. You strive for continuous improvement and learning, and you make things happen. If you enjoy a fast-paced environment, are highly organized and able to manage multiple priorities, you will get far with Sympa.

  

Furthermore, the following skills and experience are needed to succeed:   

  • A technical background and relevant education (e.g. IT, software development, infrastructure or security operations)

  • A few years of hands-on experience in information security or similar role

  • Familiarity with ISO 27001 is required, experience with ISO 9001 is a plus

  • Understanding of data protection frameworks (e.g. GDPR, NIS2) is a strong plus

  • Ability to communicate clearly with technical and non-technical stakeholders both in Finnish and English, other Nordic languages being a plus

  • Experience in Microsoft Azure and software development is a plus

Why Sympa?   

Sympa is striving for fast international growth while maintaining the agility of a small business, and this shapes our work culture. Decisions are made fast, with flat hierarchy. We’re all connected by a passion for what we do, and a desire to develop in what we do, and we have the freedom to create, implement and grow together with Sympa.   
  

  • Innovation: Work with the latest technologies within security, quality and data protection.   

  • Collaboration: Support from experienced external CISO-level partner as well as from many other technical and legal colleagues.

  • Impact: Make a meaningful contribution to our customers' success.   

  • Benefits: Take advantage of perks such as lunch and cultural activities   

  • Growth: Be part of a company that values your skills and supports your development.

  
Got your attention?   

Great, now let us know who you are by sending us your CV and a short application letter. We’d like you to outline your salary expectations and potential starting date in your cover letter. The position will be filled as soon as we find the right candidate.   
   
If you have any questions on the role, you can contact our hiring manager, Arttu, for this position.   


Arttu Heikkilä

Chief Technology Officer

arttu.heikkila@sympa.com


Sympa believes an equal, diverse, and inclusive work environment leads to a creativity, innovation, and openness- everything we value on our global growth journey.

 
We commit to providing equal opportunity to all qualified applicants regardless of gender, gender identity, age, nationality, religion, disability, sexual orientation, or any other personal characteristics.

 

We want everyone to be themselves and to thrive in our inclusive work environment.

or

sympa.com