Om jobbet
Are you interested in joining Europe's fastest growing companies? Do you want to impact the wellbeing of millions of employees?If yes, then keep reading and join us to make an impact in a fast-paced and dynamic environment where you'll play a key role in enabling secure growth across Europe.
Epassi's purpose is to boost everyday well-being. We are a leading provider of employee benefit solutions across Europe. Since our founding in 2007, we have expanded into multiple markets and continue to scale. As we grow, security plays a central role in ensuring business continuity, customer trust, and regulatory compliance.
We are currently hiring aSecurity Managerto be based in Finland, Sweden, or Germany.
Your mission at Epassi
As our Security Manager, you will lead our security function and coordinate security operations across multiple European markets.
You will take responsibility for managing and developing our security team while ensuring that security governance, certification processes, and regulatory requirements are handled effectively in a fast-growing SaaS environment.
You will operate in an environment where goals and expectations are clear, but achieving them requires initiative, prioritization, and independent decision-making. Security at Epassi is not isolated from the business. It is a key enabler of sustainable growth.
Your responsibilities will be:
- Manage and support the Security Team, fostering a high-performance, collaborative environment.
- Lead security operations and ensure alignment with business goals and regulatory requirements.
- Maintain the security governance and audit readiness across multiple markets (e.g., ISO 27001, DORA, and other relevant frameworks).
- Drive certification processes and ensure documentation and evidence are maintained across a broad set of security controls.
- Manage the risk assessments, define mitigation plans, and track improvements to the company's security posture.
- Oversee the implementation and continuous improvement of security tools and technologies (e.g., SIEM, endpoint protection, IAM, vulnerability scanning).
- Collaborate closely with engineering, product, IT, legal, compliance, and HR teams to embed security into daily processes.
- Promote security awareness and act as a trusted advisor across the organization.
You'll be successful in this role if you:
- Deliver certification and audit cycles successfully and on schedule
- Bring clarity and prioritization to a fast-moving security environment
- Ensure agreed initiatives are executed and follow through on commitments
- Raise risks early and propose practical solutions when challenges arise
- Lead experienced specialists through dialogue, trust, and accountability
- Balance security rigor with pragmatic business enablement
You are comfortable operating in a growth-stage company where priorities evolve and not every process is fully predefined.
What you'll be doing (daily):
- Guiding and supporting your security team in their operational responsibilities
- Reviewing vulnerabilities, audit findings, and remediation plans
- Coordinating evidence collection and documentation for certification and audit processes
- Participating in design discussions and ensuring secure-by-design principles are applied
- Aligning with engineering and product teams on risk mitigation and prioritization
- Monitoring risks, identifying bottlenecks, and ensuring progress against agreed timelines
- Communicating risks, progress, and priorities clearly to leadership
You will lead experts who are capable and independent. Your role is to create focus, ensure accountability, and maintain forward momentum.
What you should bring:
- Several years of experience in information security, with at least 2-3 years in a leadership, managerial, or senior technical role.
- Strong understanding of cloud security, secure software development environments, and modern SaaS risks.
- Hands-on experience with ISO 27001, SOC 2, PCI DSS, and regulated environments.
- Experience working in a tech, SaaS, or fast-paced growth organization
- A structured, solution-oriented mindset with strong prioritization skills
Relevant certifications such as CISSP, CISM, or similar are considered a plus.
Your language profile:
We expect you to have fluent English skills. Other European languages are considered an advantage.
Your track record:
- Successfully led or contributed to certification or audit programs
- Demonstrated impact in improving organizational security posture
- Experience managing security risks in a technology-driven environment
- Proven ability to deliver initiatives end-to-end and ensure follow-through
- Experience leading or mentoring experienced specialists
Your competency profile:
- Leadership
You create clarity, enable autonomy, and build trust within an expert team. - Accountability & Ownership
You take responsibility for outcomes and ensure agreed actions are delivered as planned. - Proactivity
You identify risks early and take initiative to address them before they escalate. - Communication
You translate complex security topics into clear, actionable guidance. - Analytical mindset
You prioritize based on impact and risk, even when multiple demands compete for attention. - Resilience
You remain composed under pressure, especially during audits or tight deadlines.
Why You Should Join Us
Be part of an ambitious growth journey and join a global community of driven, bold, entrepreneurial, yet humble Epassians in a company that is constantly evolving.
Work with a clear purpose - boosting everyday wellbeing - and contribute to building a secure foundation for millions of users across Europe.
Thrive in an open culture with low hierarchy, where ownership, trust, and collaboration are central to how we work.
Join a fast-growing tech company with a strong financial foundation, offering opportunities to grow together with us.
The hiring manager for this position isPekka Pietikäinen, Head of Group IT & Securityat Epassi. For more information, contact the Talent Acquisition team at careers@epassi.com.
Epassi
FöretagEpassi
