ICT Risk Lead (d/f/m) at Solaris

Solaris is a tech company with a full German banking license. Our Banking-as-a-Service platform enables businesses to offer their own financial products. With our straightforward APIs, our partners can access and integrate a wide range of solutions such as digital banking, payments, cards, identification and lending services. As a market leader we are driven by bringing transformational change to the financial services industry.

We love what we do and we love our team. We are 700+ people from over 70 nationalities - a unique blend of techies, fintech enthusiasts, bankers and entrepreneurs from various industries. Our routines are built around genuinely valuing and exchanging different perspectives as well as actively sharing knowledge as we drive our business as a team. We believe and invest in personal growth.

Your Role 

• Contact person for information security related questions
• Management and follow-up on information security risks and vulnerabilities
• Observation of measures to increase information security
• Participate in IT projects and advice on information security topics
• Develop and deploy risk management
• Conduct projects to enhance IT compliance and remediate risk
• Establish process related documentation and references
• Regular reporting of information security risks to the management of theorganisation
• Support the management in decision making in information security related topics
• Support the information security officer in the management of our ISMS
• Leading information security project to achieve compliance with DORA, PCI DSS, KRITIS, and ISO27001

We'd love to see 

Depending on your level of experience, your responsibilities and scope of role will range. We don’t care much about fancy titles, but rather about real personal and professional development, as laid out in our learning framework. Let’s figure together out how you can contribute to our team.

Hard Skills:

• Higher education degree, preferably in Computer Science, Computer Engineering of Information Security related subjects
• Minimum of 6 years of relevant work experience in Information Risk Management, Information Security and Security Incident Response
• Knowledge of risk management, Information Security standards and financial regulations (e.g. BAIT, MaRisk, DORA, SWIFT)
• Certification in Information Security is required (e.g. ISO 27001 Leader, CISM, CRISC, CISSP)
• Good written and spoken English knowledge. German language skill a strong plus

Soft Skills:

• Integrity
• Strong analytical skills
• Strong communications & presentation skills
• Stakeholder management skills and relationship builder and ability to articulate/sell ideas
• Ability to work accurately and independently
• Ability to grasp the big picture
• Flexibility in approach and thinking, ability to cope well in a fast-paced environment
• Solution oriented

Benefits 

• We have a "remote-friendly" working arrangement
• Home office budget
• Learning & Development budget
• Transparent framework to support your career goals
• Competitive salary

While job ads usually paint an ideal picture of a candidate, studies show that most applicants meet an average of 60% of the criteria. Unfortunately, many promising candidates tend to apply only if they meet all the criteria. So if you think you have what it takes, but don't necessarily meet every single item in the job description, please contact us anyway. We'd love to talk with you and find out if you might be a good fit for us.

At Solaris, we are committed to nurturing an inclusive environment, where all Solarians feel valued, respected and supported. We are dedicated to building a diverse workforce that reflects the diversity of our communities. We are committed to equal employment opportunity regardless of color, ethnicity, religion, sex, origin, disability, marital status, citizenship, or gender identity. We are proud to be an equal opportunity workplace. If you have a disability or special need that requires accommodation, please let us know.

Information on data processing:

DE: https://www.solarisgroup.com/gdpr_notice_de
EN: https://www.solarisgroup.com/gdpr_notice_en

To all recruitment agencies: Solaris does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Solaris employees or any other venture in our ecosystem. Solaris is not responsible for any fees related to unsolicited resumes.