Finde einen Job 
Finde eine Ausbildung 
Top Arbeitgeber 
Top Universitäten 
Für Unternehmen Auf einen Blick
- Aufgaben: Lead ICT risk management and ensure compliance with regulations in our Luxembourg office.
- Arbeitgeber: Join Unzer, a top European fintech simplifying international payments for e-commerce and retail.
- Mitarbeitervorteile: Work from home 60%, flexible hours, and a €1000 learning budget await you!
- Warum dieser Job: Make a real impact in a diverse team while enhancing your career in a dynamic environment.
- Gewünschte Qualifikationen: Bachelor's in IT or related field; extensive experience in ICT risk management required.
- Andere Informationen: Enjoy 15 days of workation within the EU and participate in fun company events!
Das voraussichtliche Gehalt liegt zwischen 72000 - 100000 € pro Jahr.
About us
Unzer is a leading European fintech company with a mission to simplify international payments for e-commerce and retail businesses. Our brand was formed from 13 companies that now contribute to building a unique product covering the entire payment flow.
At Unzer, we are driven by the belief that customers should enjoy a seamless shopping experience, no matter where they choose to shop. We are a team of over 750 experts from 70 different nationalities, dedicated to creating a state-of-the-art unified commerce platform. Our goal is to enable businesses to delight their customers with a seamless payment experience.
Whether you’re a tech enthusiast, payment expert, or a dedicated support professional, we are looking for individuals who are passionate about making a difference.
Our offices : We are based across Austria, Denmark, Germany and Luxembourg with a HQ in Berlin.
What your work will look like:
- Lead ICT risk management for the Luxembourg office, ensuring robust risk management processes that align with group standards and local regulations.
- Ensure full compliance with ICT risk-related regulatory requirements by staying updated on new regulations and coordinating with subject matter experts. Develop strategic plans for effective ICT risk management oversight.
- Conduct independent assessments, validate control actions, and ensure proper risk identification as part of independent oversight. Oversee compliance with group and local policies, and develop systems to monitor adherence. Analyze and challenge the technology risk management framework to ensure policies are current and appropriate for the risks faced.
- Establish and review ICT risk limits quarterly, or more frequently based on market or internal changes. Assess and monitor the internal control environment to ensure its effective operation.
- Provide risk management guidance based on relevant analysis and controls, and oversee the Luxembourg measurement framework, including risk aggregation and monitoring within the ICT Risk Appetite Framework.
- Ensure appropriate resources and development opportunities for ICT risk management staff. Set ICT risk priorities, fostering open communication and effective challenge regarding risk mitigation strategies. Promote technology risk awareness and organize communication meetings.
- Act as the main contact for internal and external audits and regulatory bodies on ICT risk management. Oversee the information security risk management framework, ensuring compliance with ISO requirements and DORA. Manage operational resilience testing activities, including independent vulnerability scans and tests.
- Report ICT risks and resolve deficiencies promptly. Oversee the tracking and escalation of issues, including exceptions for the Luxembourg office.
- Provide regular risk updates to the Luxembourg Board and authorized management, and annual updates to the CSSF. Set the risk appetite for Luxembourg and seek approval from the Luxembourg Board.
- Act as the primary ICT risk contact for regulators in the region. Support incident management and raise awareness of critical ICT risks. Ensure accurate reporting on the local ICT risk posture and meet regulatory requirements. Coordinate ICT risk assessments with the Group’s Technology and Risk teams to address local needs.
What you need to be successful in this role:
- Bachelor’s degree in Information Technology, Computer Science, Risk Management, or a related field; a Master’s degree is a plus.
- Extensive experience in ICT risk management, information security, or a related discipline, preferably within the financial services sector.
- Strong knowledge of regulatory requirements and standards, such as ISO, DORA, and other relevant frameworks.
- Proven track record of developing and implementing effective risk management strategies and frameworks.
- Excellent analytical and problem-solving skills with the ability to assess complex risks and provide strategic guidance.
- Strong leadership and team management skills, with experience in fostering a collaborative and high-performance work environment.
- Excellent communication and interpersonal skills, with the ability to engage effectively with stakeholders at all levels, including regulators and board members.
- Relevant professional certifications, such as CISM, CISSP, CRISC, or equivalent, are highly desirable.
What’s in there for you:
Work from home up to 60% of the time. We want you to keep your work-life balance.
Mobility support, whether you choose bike rental or leasing or a Deutschland ticket – we’ve got you covered.
Explore counselling assistance, be it for professional or personal matters, through our associated platform.
15 days a year of workation from your desired destination within the EU.
Flexible working hours – you get to choose the schedule that works best for you!
Learning budget of 1000 euros per year – you can develop your passions with us.
Enjoy some fun moments with your coworkers – we throw a company party once a year and host several team events!
#J-18808-Ljbffr
Chief Information Security Officer (w/m/d) Arbeitgeber: Unzer Group
Kontaktperson:
Unzer Group HR Team
StudySmarter Bewerbungstipps 🤫
So bekommst du den Job: Chief Information Security Officer (w/m/d)
✨Tip Number 1
Familiarize yourself with the specific regulatory requirements and standards mentioned in the job description, such as ISO and DORA. This knowledge will not only help you understand the role better but also demonstrate your commitment to compliance during discussions.
✨Tip Number 2
Highlight your experience in leading ICT risk management initiatives, especially within the financial services sector. Be prepared to discuss specific examples where you've successfully implemented risk management strategies and frameworks.
✨Tip Number 3
Showcase your leadership and team management skills by preparing anecdotes that illustrate how you've fostered a collaborative work environment. This is crucial for a role that involves guiding and developing ICT risk management staff.
✨Tip Number 4
Engage with current trends in technology risk management and be ready to discuss how these trends could impact Unzer's operations. This will position you as a forward-thinking candidate who is aware of the evolving landscape in ICT risk.
Diese Fähigkeiten machen dich zur top Bewerber*in für die Stelle: Chief Information Security Officer (w/m/d)
Tipps für deine Bewerbung 🫡
Understand the Company: Before applying, take some time to understand Unzer's mission and values. Familiarize yourself with their products and services, especially in the context of international payments and e-commerce.
Tailor Your CV: Make sure your CV highlights relevant experience in ICT risk management and information security. Emphasize any experience you have in the financial services sector and your familiarity with regulatory requirements like ISO and DORA.
Craft a Compelling Cover Letter: In your cover letter, express your passion for risk management and how your skills align with Unzer's goals. Mention specific achievements that demonstrate your ability to lead ICT risk management and compliance efforts.
Highlight Relevant Certifications: If you hold any professional certifications such as CISM, CISSP, or CRISC, make sure to mention them prominently in your application. These credentials can set you apart from other candidates.
Wie du dich auf ein Vorstellungsgespräch bei Unzer Group vorbereitest
✨Understand Regulatory Requirements
Make sure to familiarize yourself with the specific regulatory requirements and standards relevant to ICT risk management, such as ISO and DORA. Being able to discuss these frameworks in detail will demonstrate your expertise and readiness for the role.
✨Showcase Leadership Skills
Prepare examples that highlight your leadership and team management experience. Discuss how you've fostered a collaborative environment and led teams to successfully implement risk management strategies in previous roles.
✨Demonstrate Analytical Abilities
Be ready to showcase your analytical and problem-solving skills. Prepare to discuss complex risks you've assessed in the past and how you provided strategic guidance to mitigate those risks effectively.
✨Engage with Stakeholders
Highlight your communication and interpersonal skills by preparing to discuss how you've engaged with various stakeholders, including regulators and board members. Share specific instances where your communication made a significant impact on risk management outcomes.
