Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
© 2026 Gapfruit. All rights reserved.
DELTA XY. 133700
ANOTHER OS
Your role
At Gapfruit, we develop operating system technology for devices used in critical infrastructure. As regulatory requirements such as the EU Cyber Resilience Act (CRA) become binding, product trustworthiness must not only be engineered — it must also be demonstrable, auditable, and certifiable.
In this role, you take responsibility for translating regulatory and certification requirements into a clear, achievable path for Gapfruit. Your focus is not on paperwork alone, but on making compliance structurally achievable within engineering-driven products and processes.
You will work closely with engineering, product, and leadership to ensure that Gapfruit OS meets regulatory expectations, starting with IEC 62443 as a key certification.
This includes
- Interpreting the requirements of the Cyber Resilience Act (CRA) and related regulations in the context of operating system technology
- Leading and coordinating IEC 62443 certification efforts, including scope definition and preparation
- Translating regulatory and normative requirements into concrete, actionable guidance for engineering and product teams
- Supporting the definition of documentation, processes and evidence required for certification and audits
- Acting as the primary interface to certification bodies, auditors and external experts
- Ensuring that compliance considerations are aligned with long-term product architecture and lifecycle strategy
What we are looking for
We are looking for someone who understands how regulatory requirements are applied in practice — not only how they are written. Your background may come from certification bodies, regulated industries, product security, quality management, or compliance functions. What matters most is the ability to work constructively with engineers and to turn regulatory requirements into structures that are realistic, verifiable, and sustainable.
You are comfortable navigating ambiguity, engaging with external authorities, and explaining complex requirements with precision and pragmatism. You value correctness and traceability, but also understand the constraints of real-world product development.
What to expect
- A role with clear ownership of regulatory readiness and certification strategy
- Close collaboration with engineering and product teams
- Direct contribution to enabling Gapfruit’s products for regulated and critical infrastructure markets
- A focused, engineering-driven environment with short decision paths
- Long-term relevance as regulatory requirements continue to evolve
Apply
If you are excited by the problems we work on, we would love to hear from you – even if your experience does not perfectly match every point above.
Please send your CV to careers@gapfruit.com. Every application is reviewed manually by a member of our team.
LATENCY
// SECURITY RATE
View more open roles
Head of Global Trust Services
Management
Zug
OEM Trust Services Lead
Trust Services Operations
Europe
Certification & Regulatory Compliance Expert (Cyber Resilience Act / IEC 62443)
Engineering
Zug
Team Lead Development
Engineering
Zug
Office Assistant
Administration
Zug
Operating System Engineer
Engineering
Zug
