Compliance Security Officer (F/H)

About Mirakl

Mirakl is a global leader in marketplace innovation, empowering businesses to compete in the platform economy. Our operating system combines enterprise marketplace solutions, AI-powered multichannel selling, retail media, and agentic commerce infrastructure. We support over 450 marketplaces and a network of 100k+ sellers, with brands like Macy's and Airbus Helicopters leveraging our technology.

Mirakl in Numbers:

• Founded in 2012 | Member of French Tech Next40
• 750+ employees in 9 offices worldwide: Paris, Barcelona, Bordeaux, Boston, London, Munich, New York, Sydney, Tokyo.

Our Values:

• 💡 Work Hard Together
• 🏆 Get Things Done
• 🚀 Go Above & Beyond
• 🎓 Succeed Through Expertise
• 🤝 Satisfy & Empower Clients

The Team You’ll Join

You'll be part of the Security team within the GRC pillar, led by Maxime Lahaye, Senior Security Officer, based in Paris. This team is at the forefront of ensuring Mirakl's adherence to security standards and regulations while shaping compliance in an AI-driven world. You'll contribute to building the GRC infrastructure of tomorrow, where automation, intelligence, and security converge.

Your Impact:

1 · Compliance & Certifications — Automated

• Contribute to maintaining Mirakl’s ISO 27001, ISO 27018, and SOC 2 certifications using automated GRC platforms for continuous monitoring.
• Help manage and evolve the Information Security Management System (ISMS) to reflect regulatory requirements and AI-driven operations.
• Automate evidence collection, control monitoring, and documentation workflows using modern GRC tooling and AI-powered agents.

2 · AI Governance — To build with the team

• Co-design and evolve Mirakl’s AI usage governance framework: acceptable use policies, data classification for AI inputs, shadow AI detection, and AI vendor risk assessment.
• Maintain an inventory of AI tools and contribute to the risk-based evaluation and onboarding process for new tools.
• Participate in internal awareness and training on responsible AI use.
• Monitor the AI governance regulatory landscape and adapt the framework proactively.

3 · Security by Design Across All Company Projects

• Partner with Product and Engineering teams early in project lifecycles to embed security and compliance requirements.
• Participate in risk reviews for all initiatives, with a specific focus on AI-related threat vectors (e.g., prompt injection, data leakage, access control for models).

What You’ll Bring to the Role:

• Experience:
• Master’s degree (Bac +5).
• Minimum 3 years of experience in GRC security.
• Experience in a consulting firm, technology company, or equivalent role is a plus.
• Strong understanding of compliance frameworks and security standards.
• Scripting/developing experience.
• Experience with web application and cloud (SaaS) security, professional certifications (CISM, CISSP, ISO) are a plus.
• Skills:
• Proactive, autonomous, with strong organizational and problem-solving abilities.
• Excellent communication and pedagogical skills to influence stakeholders.
• Integrity and ethics.
• Ability to work collaboratively in extended teams.

Tools Used:

• Drata
• AWS, GCP
• N8N
• Python
• Office Suite / Google Workspace

Languages:

• Fluent in French and conversational English.

Hiring Process:

1. 30-45 minute call with a Talent Acquisition Specialist.
2. 1-hour technical interview with the hiring manager.
3. Two 45-minute values interviews using the STAR methodology.