Compliance & Data Governance Lead – FinTech / SaaS (60-80%)

We are seeking an experienced Compliance & Data Governance Lead to oversee our certification programmes (ISO, ISAE, GDPR), drive policy governance, strengthen our information security management framework, and manage internal compliance processes as we scale our digital asset technology business. 

About the role 

We are looking for a Compliance & Data Governance Lead to design, implement, and maintain Wyden’s internal compliance framework, data governance model, and certification readiness across ISO and ISAE standards. In this role, you will own the internal control environment, lead external audits, and ensure that data ownership, access governance, and privacy processes are consistently embedded across the organisation. 

Reporting to the CEO, you will work closely with Technology, Product, and the Executive Team to operationalise security controls, maintain audit-ready evidence, and support client due-diligence and regulatory requirements. You will also prepare compliance and risk reporting for senior leadership and the Board. 

This is a strategic yet hands-on role, well-suited to someone who enjoys building lightweight, scalable processes in a high-growth SaaS environment. 

Your responsibilities will include:

Certification, Audit & Assurance 

• Lead and maintain Wyden’s certification programmes (ISO 27001/27017/27018, ISAE 3000/3402). 
• Ensure ongoing certification readiness and manage external auditors end-to-end. 
• Coordinate the collection, tracking, and secure storage of audit evidence. 
• Manage quarterly and annual ISO/ISAE audit cycles, including control testing. 
• Maintain control documentation and audit artefacts in Confluence/Jira. 

Data Governance & Privacy 

• Own Wyden’s data governance model, including data ownership, data catalogues, and key data elements. 
• Maintain data lineage, data-quality processes, and issue-management workflows. 
• Conduct Data Protection Impact Assessments (DPIAs) and maintain privacy notices. 
• Ensure compliance with GDPR, data retention requirements, and privacy standards. 
• Maintain high-quality datasets for onboarding, platform usage, and transaction monitoring. 

Controls, Security & Platform Alignment 

• Work with Technology to embed access controls, logging, data retention, and incident-response processes within the platform. 
• Support day-to-day ISO control operations (e.g., JML, access reviews, vulnerability-management evidence). 
• Perform routine compliance checks and control-effectiveness reviews. 
• Track and manage exceptions, risk-treatment actions, and remediation plans. 

Client, Commercial & Documentation Support 

• Partner with Sales to respond to due-diligence questionnaires, RFPs, and client security assessments. 
• Handle client DDQs alongside Compliance and Sales teams. 
• Provide audit-ready documentation, certifications, and security materials for customers and partners. 

Reporting & Governance 

• Prepare compliance, data-governance, and risk metrics for internal leadership, risk committees, and Board reporting. 
• Provide Board-level updates on risk posture, control performance, and certification status. 
• Maintain the enterprise risk register, ensuring risks, controls, and mitigation plans remain accurate and current. 

Culture, Training & Process Improvement 

• Drive internal awareness and engagement around compliance, security, and data governance. 
• Conduct compliance onboarding and ongoing training for staff. 
• Identify opportunities to automate, streamline, and standardise compliance processes to support scalable growth. 

The ideal candidate would bring:

• 4 to 7 years of experience in compliance, data governance, audit, or risk roles. 
• Data Protection Officer certification or equivalent is highly valued.
• Experience in FinTech, RegTech, or high-growth SaaS environments. 
• Proven experience supporting ISO 27001/27017/27018 and/or ISAE 3000/3402. 
• Strong focus on data stewardship, data governance, and data quality. 
• Experience coordinating external audits and preparing evidence. 
• Familiarity with GDPR and privacy impact assessments. 
• Experience working with Technology teams on access controls, logging, and security controls. 
• Strong documentation and process design skills in a fast-moving environment. 
• Ability to collaborate with commercial teams on security questionnaires and client assessments. 
• Business fluency in English. 

Who we are... 

Wyden is the leading provider of institutional digital asset trading technology to financial institutions. But more than that, we’re a collaborative, motivated team of leaders, experts, and engineers who believe in what we do, building advanced, modular trading technology that makes it easy for our clients to launch digital asset products and services.

We are proud of our success to date. In November 2024, we secured $16.9 million in Series B funding to support our strategic expansion into regulated markets, and in early 2025, we became recognized once again as one of Crypto Valley’s CV VC Top 50 companies. Not to mention the dozens of banks, brokers, and financial service providers that already rely on our trading infrastructure.

Digital assets are becoming a mainstream asset class, and the banking world is catching up fast. If you’re passionate about technology, thrive on solving complex challenges, and shaping the future of institutional digital asset trading, Wyden is the place for you. 

Headquartered in Zurich, Switzerland, Wyden has regional offices & development hubs in Eastern Europe. 

What Wyden offers 

• An opportunity to play a key role in shaping the future of the digital assets industry.
• Competitive salary and benefits package.
• Flexible / remote working policies.
• Career development opportunities in a fast-growing startup.
• An open and dynamic work environment where everyone is valued.
• Become part of a global team of professionals with a diverse range of expertise covering banking, trading, software and systems development, and more.