Security GRC Manager

About Nebius AI 

Launched in November 2023, the Nebius AI platform provides high-end infrastructure and tools for training, fine-tuning and inference. Based in Europe with a global footprint we aspire to become the leading AI cloud for AI practitonerts around the world.

Nebius is built around the talents of more than 500 highly skilled engineers with a proven track record in developing sophisticated cloud and ML solutions and designing cutting-edge hardware. This allows all the layers of the Nebius AI cloud – from hardware to UI – to be built in-house, clearly differentiating Nebius from the majority of specialized clouds: Nebius customers get a true hyperscaler-cloud experience tailored for AI practitioners.

As an NVIDIA preferred cloud service provider, Nebius offers the latest NVIDIA GPUs including H100, L40S, with H200 and Blackwell chips coming soon.

Nebius owns a data center in Finland, built from the ground up by the company’s R&D team. We are expanding our infrastructure and plan to add new colocation data centers in Europe and North America already this year, and to build several greenfield DCs in the near future.

Our Finnish data center is home to ISEG, the most powerful commercially available supercomputer in Europe and the 19th most powerful globally (Top 500 list, June 2024). It also epitomizes our commitment to sustainability, with energy efficiency levels significantly above the global average and an innovative system that recovers waste heat to warm 2,000 residential buildings in the nearby town of Mäntsälä.

Nebius is headquartered in Amsterdam, Netherlands, with R&D and commercial hubs across North America, Europe and Israel.

The role

We’re looking for an experienced Security GRC professional.

This position is integral to our Governance, Risk, and Compliance (GRC) team and involves close work with IT and business leaders, as well as our Internal Audit & Internal Control team.

You’re welcome to work in our office in Amsterdam, hybrid or remotely.

Your responsibilities will include: 

• Collaborate with technology, infrastructure, business and other teams to design, implement, document, and enhance security processes and controls.
• Deliver tangible results by streamlining security processes and managing cross-team efforts.
• Lead preparations of Nebius products for security certifications, attestations and security-related laws and regulations.
• Drive security risk management across the organization.
• Maintain compliance with applicable laws, regulations, international and local standards, and internal policies
• Contribute to the research of market insights and customer needs and translating this into changes related to security compliance and trust

We expect you to have: 

• 5+ years in cybersecurity: security architecture, processes, GRC
• Deep understanding and ability to manage compliance with multiple frameworks: ISO, SOC, PCI DSS, CSA STAR, HIPAA, etc.
• Master’s degree in Computer Science, Information Security or similar, certifications such as CISSP are a strong plus.
• Hands-on experience with building security processes from scratch or managing major changes.
• Solid and wide knowledge of modern information technologies, experience with cloud is highly desirable.
• Strong stakeholder engagement skills, ability to see perspective and speak the language of developers, lawyers, auditors and business.
• Ability to work independently in a dynamic environment with a hands-on approach.
• Ability to understand complex issues with the context, identify key safeguards and set priorities.
• Proficiency in English and Dutch. 

We’re growing and expanding our products every day. If you’re up to the challenge and are excited about AI and ML as much as we are, join us!