S

Compliance Cybersecurity Counsel

Second Foundation · Prague, Prague, Czechia

Jun 24
Mid (2-5 yrs) Contractor Czechia
Log in to apply, save this posting, or score it against your profile with AI.

About the role

Provide legal and compliance support for cybersecurity initiatives, including protecting trading platforms and cloud infrastructure. Monitor threat intelligence and ensure adherence to regulations like NIS2, DORA, and ISO certifications.

What they look for

Cybersecurity Law Project Management Regulatory Compliance Incident Response Security Governance Risk Assessment Legal Drafting Stakeholder Communication Network Security Cloud Security

Requirements

Requires a university degree in law and at least 3 years of experience in a law firm or corporate environment. Must have experience with cybersecurity regulations and C1 level English proficiency.

Benefits

Brand New Office In The City Center High-End Workstation

Full description

Second Foundation is a global energy trading company with 500 plus employees across locations in Prague HQ (CZ), Zug (CH), Berlin (DE), Charlotte (USA), and Tokyo (JP). We specialize in power market trading and in the integration and optimization of renewable energy and battery storage systems. In parallel, we are actively expanding our own asset base, with a primary focus on battery storage.

What you would work on?

  • Serving as a member of the compliance team appointed for cybersecurity, helping to protect Second Foundation’s trading platforms, internal systems, and cloud infrastructure against evolving threats.
  • Legal support related to IT cybersecurity initiatives from planning through delivery (e.g. vulnerability assessments, penetration testing coordination, and security tooling rollouts)
  • Monitoring and analysing threat intelligence relevant to the energy trading sector, and translating findings into actionable security improvements.
  • Tracking evolving cybersecurity regulations (NIS2, DORA, CER,...) and ISO certification requirements and working as part of the legal and compliance teams to ensure the group meets its obligations across all jurisdictions.
  • Supporting the development, implementation, and maintenance of internal cybersecurity policies, governance frameworks, and incident response procedures.
  • Coordinating with engineering and IT teams on security architecture reviews, secure software development practices, and network security hardening.
  • Legal support to IT when responding to cybersecurity and privacy incidents.
  • Managing relationships with external security vendors and auditors.
  • Legal support when running security awareness training across the organisation.
  • Working alongside the best mathematicians and engineers in the world.

What makes you a great candidate?

  • 3+ years in law firm or corporate environment.
  • Experience with cyber security regulations.
  • Strong project management skills – ability to plan, coordinate, and deliver security projects across teams and deadlines.
  • University education in field of law.
  • English language – C1 level.
  • Knowledge of network protocols, firewalls, SIEM tools, and cloud security (AWS/Azure) is a great advantage.
  • Excellent communication skills – ability to explain regulation to non-lawyers and security risks and technical concepts to non-technical stakeholders.

What we offer?

  • Preferably a freelance / independent contractor engagement — ideal for self-employed.
  • Brand new office in the city center – Masaryčka.  
  • High-end workstation.  
  • Colleagues who are absolute experts in what they do. 
  • Work for impact -shape the energy transition with actions, not words.