About the Role:

We are looking for a Compliance Officer to join our team in Novi Sad!

In this role, you will ensure that our internal processes, documentation, and behaviours align with applicable standards, laws, and ethical practices.
You’ll be a key player in preparing the company for ISO 27001 and SOC 2 certifications, managing customer compliance interactions, and overseeing overall adherence to regulatory and contractual obligations.

This position blends hands-on execution with strategic oversight. We are looking for someone who understands both compliance frameworks and how to make them work in practice.

Key Responsibilities:

• Contribute to maintaining the organization’s integrity by upholding high ethical standards.

• Provide expertise on all issues related to compliance management and regulatory alignment.

• Lead and maintain compliance with ISO 27001 and SOC 2 frameworks.

• Respond to customer and regulatory due-diligence requests in a timely and professional manner.

• Take part in external audits and certification activities.

• Develop and deliver security and compliance awareness training programs to employees.

• Develop and enforce policies and procedures to ensure compliance with laws, standards, and regulations.

• Collaborate with department heads to align all business operations with internal policies and compliance goals.

• Oversee compliance requirements for applicable contracts, customers, and partners, ensuring proper documentation and follow-up.

• Monitor subcontractors, independent contractors, and grantees’ compliance with organizational and legal requirements.

• Establish metrics and KPIs to evaluate and report on the effectiveness of the compliance program.

• Communicate compliance performance and risks to leadership and key stakeholders.

• Assist in managing non-compliance issues, from investigation to resolution.

• Conduct internal reviews and audits to assess compliance and identify areas for improvement.

• Develop risk mitigation strategies and coordinate security risk assessments and analyses.

Requirements:

• Proven experience with ISO 27001 implementation and maintenance.

• Familiarity with SOC 2 framework and evidence preparation.

• Strong understanding of compliance processes, risk management, and documentation control.

• Knowledge of compliance management, risk assessment, and data protection principles.

• Background in IT security, data privacy, or quality management systems

• Detail-oriented and proactive, able to work independently and cross-functionally.

• Previous involvement in audit preparation or direct contact with certification bodies.

• Previous experience with customer compliance management.

• Fluency in English and Serbian language (written and verbal).