Information Security Roles & Responsibilities

Role	Named Individual(s)	Key Responsibilities
Chief Executive Officer (CEO)	Hans-Kristian Bjerregaard	• Approves ISMS policies & resources • Chairs management reviews
Head of Product	Casper Nielsen	• Ensures secure architecture & SDLC • Reports tech risks to CEO
Information Security Manager (ISM)	TODO appoint	• Operates ISMS, maintains documentation • Coordinates audits & risk assessments • Leads incident response
Data Protection Officer (DPO)	Hans-Kristian Bjerregaard	• GDPR compliance & DPIAs • Liaison with supervisory authorities • Handles data-subject requests
Site Reliability Engineering (SRE) Lead	Martin Jørgensen	• Implements operational security controls • Monitors uptime & logs
Engineering Team Leads	Various	• Enforce secure coding practices • Review pull-requests for security impacts
Product Manager – Security & Compliance	TODO	• Tracks security features & customer requirements
HR Manager	Graham Hillgren	• Embeds security in hiring & termination processes • Coordinates awareness training
Procurement / Finance	TODO	• Supplier due-diligence & contract clauses
All Employees & Contractors	—	• Follow policies, complete training • Report incidents within 15 min

TODO: Fill in TODO placeholders once internal appointments are confirmed.