Compliance Engineer

Yousign (soon to be Youtrust) is a European Digital Trust provider, fully compliant with eIDAS and the highest European standards. Our four modules – electronic signatures, identity and document verification, and e-seals – can be used independently or combined within sector-specific workflows, ensuring simple, secure and legally compliant processes for SMEs and mid-sized companies. Hosted and processed entirely in Europe, we guarantee sovereignty, transparency and reliability. As a certified B-Corp, we combine innovation with responsibility – building trust at the heart of every digital exchange. We are entering a key moment as we expand from eSignature to the full Digital Trust chain.

• A mission that matters in a world challenged by AI-driven fraud

• A vision built on integrity

• A European & sovereign platform

• A certified B Corp

• The golden age of Yousign

As Compliance Engineer at Yousign, you lead the company's compliance programs end-to-end. You own gap analyses, remediation roadmaps, and certification processes for eIDAS v2, NIS2, and ISO 27001 — and serve as the primary interface with external auditors and certification bodies, including ANSSI and LSTI.

This is not a consultant role. On selected topics arising from audits and gap analyses, you will implement the remediation directly — from design through to delivery. You bring the structure and rigour needed to keep Yousign ahead of its regulatory obligations while remaining pragmatic about business constraints.

You also step into the topics that make Yousign a Digital Trust provider: the security of our Trusted Zone, our fraud detection and prevention efforts, and our broader security posture. You won't own every one of these, but you contribute wherever the team needs you — your specialization defines where you spend most of your time, not a silo you stay inside.

• Own the full compliance lifecycle for eIDAS v2: gap analysis, remediation roadmap, implementation tracking, and certification preparation.

• Map NIS2 obligations to Yousign's perimeter, define the compliance scope, and drive the remediation and reporting cycle.

• Maintain and evolve Yousign's ISO 27001 program: continuous improvement cycle, internal audit coordination, and ISMS documentation.

• Serve as the primary point of contact with external auditors, ANSSI, and LSTI: prepare audit packages, manage interactions, and own the certification timeline.

• Monitor the European regulatory landscape (ETSI, eIDAS, NIS, PCI DSS, and related standards), assess impact on Yousign, and translate new requirements into actionable compliance initiatives.

• Contribute to the security of the Trusted Zone, and to fraud detection and prevention, alongside the Security & Compliance team.

• Take part in the team's weekly on-call ("doctor") rotation, and build automation (n8n, AI tooling, alerting) to reduce manual toil.

• You have deep, hands-on experience with at least one technically demanding compliance standard — eIDAS v2, ETSI EN 319 series, PCI DSS, or equivalent. You have run gap analyses independently, built remediation plans, and implemented them directly on selected items. You know the difference between advising on compliance and actually delivering it.

• You are experienced running internal audits and gap analyses end-to-end. You produce structured remediation backlogs, track progress rigorously, and prepare audit packages that hold up to external scrutiny.

• You have managed or actively participated in a live ISO 27001 program. Experience in ANSSI-qualified or LSTI-accredited environments is a strong plus.

• You are familiar with the NIS2 directive and able to anticipate its implications for a SaaS company. You can scope the obligations, map them to the business, and build a readiness roadmap.

• You can represent Yousign confidently in front of external auditors, ANSSI, and LSTI. You are equally at ease translating complex regulatory requirements into clear, actionable language for engineering and product teams.

• You are comfortable working across domains. Your core is compliance, but you are happy to contribute to security operations, fraud detection, and the security of a Trusted Zone. Prior exposure to a regulated or Digital Trust environment is a strong plus.

• You are self-sufficient and manage multiple long-cycle compliance programs in parallel without losing track of dependencies or deadlines. You are comfortable operating with limited oversight in a fast-moving scale-up environment.

• You are pragmatic. You prioritise remediation efforts based on business impact and risk, and you know how to find the right level of rigour for the size and stage of the company.

• You use AI and automation to streamline compliance and security work across the team perimeter — regulatory watch, control tracking, audit preparation, reporting — and you build scalable workflows rather than one-off solutions.

• French at a native or near-native level (C2) is required. English at a professional working level (B2) is required for reading and working with ETSI standards, eIDAS regulation, NIS2 directive, and international compliance frameworks.

1. R1 — TAM Interview with Guillhem Cambiganu (30 min)

2. R2 — Hiring Manager Interview with Tony Belot (45–60 min)

3. R3 — Technical Interview: slide deck presentation + peer discussion with Tony Belot and a member of the Security & Compliance team (1H)

4. R4 — Director Interview with Kevin Dubourg (30 min)

• Salary: 64 000 – 79 000 EUR base

• Stock options - BSPCE

• Meal vouchers (Swile): 10.50 EUR/day, 50% covered by Yousign

• Health insurance (Alan): 50% covered by Yousign

• Life & disability insurance: 100% employer-covered

• Wellbeing: Axomove (4 physio sessions) and Moka.care (6 therapy/coaching sessions)

• Transportation: 50% reimbursement for public transport for hybrid workers

• Leeto: Access to numerous employee discounts

• Time off: 10 RTT days/year, plus menstrual leave, parenthood benefits, seniority days

• 1 volunteering day/year, learning & development budget, and more