Lead IT Risk Manager (f/m/d)

📋 Description

• Own and evolve the IT Risk and Business Continuity Framework (2nd line).
• Provide independent oversight to the 1st-line IT GRC on controls.
• Lead IT risk identification, assessment, and mitigation across cyber, resilience, and data security.
• Mature the ISMS with policies, standards, and ISO/IEC 27001:2022 alignment.
• Oversee third-party IT risk and business continuity assessments.
• Lead regulatory alignment for DORA; BaFin, EBA, ESMA, ECB.

🎯 Requirements

• University degree in Computer Science, Information Technology, or Information Security.
• 5+ years in IT GRC/IT Security within regulated finance.
• Deep knowledge of ISO/IEC 27001, BaFin BAIT/MaRisk, and DORA.
• Excellent English communication with diverse stakeholders and executives.
• Product-engineering mindset with security focus; comfortable with ambiguity.

🎁 Benefits

• Best-in-class AI tools: €20,000/year for tools.
• Impact-driven work shaping Europe's investment infrastructure.
• 30 days annual leave, sports benefits, and coaching.
• Remote abroad up to 183 days per year.
• One-month paid sabbatical after every 4 years.
• Personal development budget for growth.