YOUR MISSION:
As a Senior IS&T Governance Partner at Parloa, you will play a key role in safeguarding the trust and credibility of our platform by ensuring the highest standards of governance, security, and regulatory compliance. You will be entrusted with one of the organization’s most critical responsibilities: enabling Parloa to scale rapidly while remaining compliant, secure, and audit-ready at all times. at Parloa, you will play a key role in safeguarding the trust and credibility of our platform by ensuring the highest standards of governance, security, and regulatory compliance. You will be entrusted with one of the organization’s most critical responsibilities: enabling Parloa to scale rapidly while remaining compliant, secure, and audit-ready at all times.
Our IS&T Governance Department is building a world-class framework for governance, assurance, and risk management. We are establishing a mature structure of internal controls, reviews, and audits to certify our products and operations against the highest international standards, including ISO 27001, ISO 22301, PCI DSS, HIPAA, and other relevant regulatory and industry frameworks.
Today, our team consists of four specialists covering Risk Management, Compliance, Business Continuity, and Information Security Management. We are now expanding this function to scale with the company’s growth and increasing regulatory and security demands.
This is a rare opportunity to become an early member of Parloa’s internal Governance function and play a pivotal role in shaping how security, compliance, and risk management are embedded into a high-growth, AI-driven organization. You will help ensure that Parloa not only complies with all applicable regulatory and contractual obligations, but set
IN THIS ROLE YOU WILL:
- Act as a core member of the remotely distributed IS&T Governance team, fostering a strong culture of security and compliance awareness across planning, development, and operational activities.
- Ensure that changes in product, development, and operational processes are properly documented, risk-assessed, and reviewed in a timely and structured manner.
- Partner with the Commercial organization by supporting security and compliance questionnaires, contributing to contract and DPA reviews, and participating in customer calls as a trusted subject matter expert.
- Manage and respond to incoming requests related to compliance, information security, and regulatory topics, providing clear, pragmatic, and actionable guidance to internal stakeholders.
- Serve as the internal authority on information security best practices, continuously promoting industry standards and driving their consistent adoption across the organization.
- Lead and support the preparation, execution, and continuous maintenance of security certifications and regulatory frameworks (e.g., ISO 27001, ISO 22301, SOC 2, PCI DSS, HIPAA).
- When new certifications or regulatory frameworks are required, take ownership of understanding the applicable security and legal requirements in close alignment with Legal and the DPO, and translate them into hands-on guidance for engineering, product, and operations teams.
- Drive the practical implementation and adoption of compliance controls by embedding governance and security requirements into daily workflows and technical designs.
- Contribute to the definition and continuous improvement of governance processes, policies, and standards to ensure scalability and long-term audit readiness.
- Support risk assessments, DPIAs, and control design activities for new products, features, and architectural changes..
WHAT YOU BRING TO THE TABLE:
- A seasoned GRC / Information Security professional with 6–10+ years of experience across information security, compliance, risk management, and regulatory frameworks in technology-driven environments.
- Deeply experienced in security and compliance standards such as ISO 27001, SOC II, FedRAMP, PCI DSS v4, ISO 42001, and data protection regulations (e.g., GDPR, CCPA), with a strong understanding of how they apply in modern SaaS and AI platforms.
- A trusted advisor who can confidently engage with engineers, product leaders, legal teams, auditors, and enterprise customers, translating complex regulatory requirements into clear, practical actions.
- A hands-on operator who is comfortable moving between strategic governance design and detailed control implementation, audits, and evidence generation.
- A builder of scalable governance who designs processes and controls that enable speed and innovation rather than slow them down.
- A culture carrier who naturally embeds security, privacy, and compliance thinking into everyday decision-making across the organization.
-
Analytical and pragmatic, balancing regulatory rigor with business reality to deliver solutions that are both compliant and operationally efficient.
-
Resilient under pressure, remaining structured, credible, and decisive in audits, customer security reviews, and high-stakes compliance discussions.
- A continuous learner who stays current on emerging regulations, security standards, and best practices in cloud security, AI governance, and data protection.
WHAT'S IN IT FOR YOU?
- The opportunity to join a rapidly growing Conversational AI startup with offices in Berlin, New York, and Munich.
- Enjoy an immersive company onboarding experience, where you’ll have the chance to delve into the Parloa product and immerse yourself in our dynamic company culture.
- Hybrid work environment - we believe in hiring the best talent, no matter where they are based. However, we love to build real connections and want to welcome everyone in the office on certain days.
- Attractive compensation package with equity.
- Training and development budget which can be used for conferences and attending development courses to ensure continuous professional growth.
- Flexible working hours, Unlimited PTO and travel opportunities.
- Regular team events, game nights, and other social activities.
- A beautiful office with flair in the heart of NYC with all the conveniences, such as social area, snacks, and drinks.
OTE Salary Range - $100,000 - $140,000 + Equity
Why Parloa?
Parloa is one of the fastest growing startups in the world of Generative AI and customer service. Parloa’s voice-first GenAI platform for contact centers is built on the best AI technology to automate customer service with natural-sounding conversations for outstanding experiences on all communication channels. Leveraging natural language processing (NLP) and machine learning, Parloa creates intelligent phone and chat solutions for businesses that turn contact centers into value centers by boosting customer service efficiency. The Parloa platform resolves the majority of customer queries quickly and automatically, allowing human agents to focus on complex issues and relationships. Parloa was founded in 2018 by Malte Kosub and Stefan Ostwald and today employs over 400+ people in Berlin, Munich, and New York.
When you join Parloa, you become part of a dynamic and innovative team made up of over 34 nationalities that’s revolutionizing an entire industry. We’re passionate about growing together and creating opportunities for personal and professional development. With our recent $350 million Series D investment, we’re expanding globally and looking for talented individuals to join us on this exciting journey.
Do you have questions about Parloa, the role, or our team before you apply? Please feel free to get in touch with our Hiring Team.
Parloa is committed to upholding the highest data protection standards for our clients' and employees' data. All our employees are instrumental in ensuring the utmost care, GDPR, and ISO compliance, including ISO 27001, in handling sensitive information.
Parloa is an e-verify employer in the USA. Please click here to learn more.
* We provide equal opportunities to all qualified applicants regardless race, gender, sexual orientation, age, religion, national origin, disability status, socioeconomic background and other characteristics.
