Information Security Lead

Job description

Virtuagym is one of the leading and fastest growing innovators in the digital health and fitness domain, offering a Software as a Service solution and multiple native apps to users worldwide. We serve over 15 million end-users, 30,000 trainers and more than 6,000 health clubs around the globe.

As a scale-up, we offer great freedom and autonomy to take ownership of projects and to develop your skills and experience with us. Our talented staff of 200+ is based out of two locations: Amsterdam, NL, and Medellin, CO. We love to keep the company culture dynamic, informal and fun.

As we keep on growing, we are now looking for a new colleague to lead our Information Security team. Will you join us in our quest to create a healthier and happier world?

What you will work on with your team

At Virtuagym you and your teammates have a direct impact on the company-wide information security levels. The information Security team is responsible for securing the data of millions of end-users, thousands of companies and approximately 200 Virtuagym employees. Based on the strategy that you create in consideration of the company's needs, industry standards and compliance requirements, you and your team continuously work on making Virtuagym’s information security posture more robust.

Working at a technology scale-up that has rapidly grown over the past +10 years, resulting in a large user-base and a wide-range of companies using Virtuagym’s fitness and corporate health software, you will be able to work on exciting information security challenges with plenty of freedom to shape strategy and execute accordingly.

As our new Information Security Lead, you will be reporting to the CTO and you will be working together with multiple Information Security Specialists that are eager to share their knowledge and to keep on learning.

Some of your key tasks will be

  • Shape and own Virtuagym’s information security strategy;

  • Lead execution of projects within the information security domain. The wide range of projects might in example be focussed on product security, risk management, certifications and compliance, incident response management, secure operations, and more;

  • Work alongside security engineers to understand security issues and potential improvements in our products, and monitor implementation by the development teams, as well as verify the results;

  • Coordinate with stakeholders as needed to identify areas of improvement for processes, procedures, workflows;

  • Manage a team of information security specialists;

  • Report progress of the most important information security initiatives.


What you will bring to the team

  • At least 2 years of experience working as an information security specialist;

  • Good understanding of and working knowledge of information security challenges within a technology scale-up;

  • Knowledge of information security certifications, like ISO27001;

  • Experience with ensuring compliance with privacy laws, i.e. the GDPR;

  • Drive to own legal requests within the information security domain, i.e. reviewing DPAs, terms of use, privacy statement, etc;

  • Comfortable with participating as the subject-matter expert in contract negotiations;

  • Strong communication skills in English, our company language. Dutch is not required;

  • You feel comfortable working with a lot of freedom and autonomy and ready to take responsibility.

Bonus points for...

  • Experience managing a team of Information Security Specialists;

  • Experience with DevSecOps;

  • Experience with handling legal questions related to the information security domain;

  • Previously involved in obtaining ISO27001 certification;

  • Knowledge of US privacy laws, i.e. HIPAA and the CCPA.

Here’s why you should come work with us

Next to being inspired daily by talented and motivated colleagues and having plenty of opportunities for personal and professional growth, these are the main Virtuagym perks:

  • Join one of the fastest growing scale-ups in Amsterdam, within the awesome fitness tech domain!;

  • Join a diverse and international team made up of over 30 nationalities, working in an informal and fun environment;

  • We are remote-friendly, meaning you can work from home whenever you want;

  • We provide a full-time contract, 25 paid holidays per year (based on a full-time contract), 8% holiday allowance and a pension plan;

  • An opportunity to grow fast with the company, including a lot of support from the management team and the opportunity to keep developing yourself;

  • Stay healthy with our Health Program: we provide monthly contribution towards your gym subscription and a Friends & Family gym discount;

  • We love to learn: join our knowledge exchange sessions, Lunch and Learn sessions for personal development, and more;

Ready to join us?

Please do not hesitate to apply by clicking the ‘Apply for this Job’ button below! We will get back to your application within 10 working days.

For any questions on the vacancy, please get in touch with the recruitment team at

Please note that we do not collaborate with third parties to fill this vacancy.