Data Security Officer to $1650

About Us

We’re a young startup, Lovat Compliance — a global tax & compliance technology provider specialising in EPR, VAT, sales tax and cross‑border compliance for e‑commerce businesses. We’re not yet a giant corporation, and much of what we will build is still ahead of us. We need someone who understands that things aren’t perfect yet, is comfortable being the one who owns the space, and who can help us build things from the ground up.

What You’ll Do

• Establish and maintain our data‑security and information‑security programme from scratch: policies, standards, procedures tailored to our platform and services.
• Perform regular risk assessments, vulnerability scans and data‑protection audits; identify gaps and lead remediation.
• Be the owner of incident response: detection, containment, investigation and reporting of security events.
• Collaborate closely with IT development and compliance teams so that data‑protection is embedded into product development and operations.
• Manage data‑handling and access controls across the organisation — ensuring our client and platform data are processed securely.
• Run training and awareness programmes for staff on data‑security, privacy regulation (e.g., GDPR) and secure behaviours.

• Keep an eye on emerging threats, security trends and regulatory developments relevant to e‑commerce, EPR/VAT/sales‑tax platforms, and advise on what changes we need to make.

   

What We Are Looking For

• Minimum 1.5 years of experience in a role related to data security, information security or risk management — ideally within SaaS, e‑commerce or cloud‑based platforms.
• Good knowledge of data‑protection laws (e.g., UK/EU GDPR), information‑security frameworks (e.g., ISO 27001, NIST) and data‑security best practices.
• Proven experience with risk assessments, incident response and security audits.
• Excellent communication skills — able to explain security concepts to both technical and non‑technical people.

• We’re looking for someone grounded and realistic — who understands that perfection isn’t necessary, who can work independently to build things, and who’ll sleep well at night knowing things are secure even if the system isn’t «perfect».

   

Will be an advantage:

• A bachelor’s degree (or equivalent experience) in Computer Science, Information Security, Cybersecurity or a related discipline.
• Certifications such as CISSP, CISM, ISO 27001 Lead Implementer/Auditor or similar.

• Familiarity with cloud platforms like Google Cloud (GCP) and/or Amazon Web Services (AWS).

   

What We Offer

• Competitive salary: €1,000 - €1,700 (remote contract)
• Opportunity to work in a fast‑growing startup with global ambitions.
• Fully remote working model — flexibility and autonomy.
• Professional development opportunities and support.