At Gapfruit, we develop operating system technology for devices used in critical infrastructure. As regulatory requirements such as the EU Cyber Resilience Act (CRA) become binding, product trustworthiness must not only be engineered — it must also be demonstrable, auditable, and certifiable.

In this role, you take responsibility for translating regulatory and certification requirements into a clear, achievable path for Gapfruit. Your focus is not on paperwork alone, but on making compliance structurally achievable within engineering-driven products and processes.

You will work closely with engineering, product, and leadership to ensure that Gapfruit OS meets regulatory expectations, starting with IEC 62443 as a key certification.

This includes

• Interpreting the requirements of the Cyber Resilience Act (CRA) and related regulations in the context of operating system technology
• Leading and coordinating IEC 62443 certification effort...