About Mobbin

Our mission is to empower the world to design great digital experiences.

The Mobbin platform helps product designers, product managers and UI/UX researchers find highly-relevant references to their design problems. We are the world's most extensive app design reference library, serving over a million users on our platform.

Since our inception in 2018, we've grown tremendously via word-of-mouth. Today, Mobbin is used by most design-forward companies and startups, including Duolingo, Revolut, Headspace, Work & Co, Blinkist, and more.

Read more about who we are: https://careers.mobbin.com

The role

The Mobbin platform serves over a million inspiration-seekers across the world and handles large amounts of user data.

We are hiring an information security officer to bolster our security posture and stay compliant with international standards of security and privacy. You will be reporting directly to our CTO.

As a information security officer at Mobbin, you will be owning compliance at Mobbin and running our security programmes.

Our Engineering Department, whilst small, provides the technological capability that turn our ideas into software that drives global impact at scale. We take great care to balance the need for secure technologies yet exercise tact in choosing cutting edge technologies that pays forward to our long term goals.

What you'll do...

• Own both security strategy and day-to-day operations, implementing practical security controls that work for a small team.

• Ensure we meet our growing compliance (SOC 2, ISO 27001, GDPR, etc.) needs.

• Set up and maintain core security tools and practices, including cloud security, access management, and endpoint protection.

• Build our security program from the ground up, incrementally building up our security posture over time.

• Handle security reviews for customers, manage third-party audits, and help close enterprise deals with security requirements.

• Get your hands dirty with security monitoring, incident response, and vulnerability management while building automated solutions.

You should...

• Have at least 2 years of hands-on security experience, with solid understanding of cloud-native security.

• Know how to build practical security programs that enable rather than block business growth.

• Be comfortable writing code and working directly with engineers.

• Have experience with compliance frameworks relevant to SaaS (SOC 2, ISO 27001) and privacy regulations (GDPR).

• Be a self-starter who can prioritise effectively and get things done without much oversight.