ICT Risk Manager
We are a leading FinTech company at the forefront of digital payment innovation, operating in one of the most heavily regulated financial environments. Our mission is to deliver secure, scalable, and customer-centric financial solutions while maintaining uncompromising adherence to international regulatory standards. By combining technological innovation with rigorous compliance frameworks, we empower businesses and consumers to transact with confidence.
As our ICT Risk Manager (m/f/d), you will play a pivotal role in protecting the resilience and integrity of our financial systems. Positioned at the intersection of technology, risk, and governance, you will challenge senior stakeholders, drive risk-aligned decision-making, and ensure our ICT risk posture meets both regulatory expectations and business objectives. This is a unique opportunity to influence the company’s strategic ICT resilience in an environment that thrives on innovation within compliance.
Your position in our team
You act as the second line of defence by challenging the CISO, IT Security Architect, DevSecOps Team and Business Units on ICT control adequacy and risk appetite alignment
You consolidate insights from quarterly ICT risk inventories, incident summaries, and vendor risk reports into actionable recommendations
You oversee ICT risk assessment processes and ensure alignment with regulatory frameworks such as DORA, EBA, and GDPR
You partner with Incident Response, Vendor Risk, and Security Testing teams to assess, escalate, and remediate ICT risks
You prepare and deliver consolidated ICT risk reports for executive leadership, Head Risk, and Management
You support ongoing improvement of ICT governance processes, including risk identification, monitoring, and reporting
You will ensure ICT risk management practices remain robust against evolving threats and emerging technologies
Your profile
Bachelor’s degree in Information Security, Risk Management, Computer Science, or related field
Minimum 3+ years of ICT risk management experience within financial services or FinTech
Strong knowledge of risk frameworks (e.g., ISO 27005, NIST, COBIT) and regulatory requirements (e.g., EBA outsourcing guidelines, DORA, GDPR)
Experience with incident response processes, ICT vendor risk oversight, and ICT governance reporting
Excellent stakeholder management skills with the ability to challenge senior leaders constructively
Fluently Englisch (C1) and good German (B2) skills
Having a professional certification (e.g., CISM, CRISC, CISSP, CISA) is a plus
Familiarity with cloud computing risks, encryption, DevOps environments, and API-driven financial platforms is a plus
Experience in consolidating multi-source ICT risk inputs into executive-level reporting is a plus
Understanding of emerging financial technologies such as blockchain, AI, and digital identity is a plus
Your benefits with us
100% remote work within Germany / home office within Germany possible
30 days annual leave
Offices with flexible workplaces in Hamburg, Eisenstadt, Warsaw, and Melbourne - all equipped with various drinks & snacks.
Our exclusive gym, next to the Hamburg office, for free use incl. personal coach for training and nutrition, available to all employees worldwide
Our unique CashBack Sport program 'Move Republic', which rewards your daily and sporting activities throughout (Germany)
An above average pension grant for your company pension scheme ('bAV') in Germany or Austria
Access to Udemy Business – grow your skills with thousands of high-quality online courses
Access to the employee benefits portal with the best shopping deals in Germany and Austria
Subsidy for the 'Deutschlandticket' (local transport subscription)
Direct communication channels through the whole company, an open feedback culture and pronounced appreciation, motivated teams and leads who interact at eye level
ICT Risk Manager
We are a leading FinTech company at the forefront of digital payment innovation, operating in one of the most heavily regulated financial environments. Our mission is to deliver secure, scalable, and customer-centric financial solutions while maintaining uncompromising adherence to international regulatory standards. By combining technological innovation with rigorous compliance frameworks, we empower businesses and consumers to transact with confidence.
As our ICT Risk Manager (m/f/d), you will play a pivotal role in protecting the resilience and integrity of our financial systems. Positioned at the intersection of technology, risk, and governance, you will challenge senior stakeholders, drive risk-aligned decision-making, and ensure our ICT risk posture meets both regulatory expectations and business objectives. This is a unique opportunity to influence the company’s strategic ICT resilience in an environment that thrives on innovation within compliance.
Your position in our team
You act as the second line of defence by challenging the CISO, IT Security Architect, DevSecOps Team and Business Units on ICT control adequacy and risk appetite alignment
You consolidate insights from quarterly ICT risk inventories, incident summaries, and vendor risk reports into actionable recommendations
You oversee ICT risk assessment processes and ensure alignment with regulatory frameworks such as DORA, EBA, and GDPR
You partner with Incident Response, Vendor Risk, and Security Testing teams to assess, escalate, and remediate ICT risks
You prepare and deliver consolidated ICT risk reports for executive leadership, Head Risk, and Management
You support ongoing improvement of ICT governance processes, including risk identification, monitoring, and reporting
You will ensure ICT risk management practices remain robust against evolving threats and emerging technologies
Your profile
Bachelor’s degree in Information Security, Risk Management, Computer Science, or related field
Minimum 3+ years of ICT risk management experience within financial services or FinTech
Strong knowledge of risk frameworks (e.g., ISO 27005, NIST, COBIT) and regulatory requirements (e.g., EBA outsourcing guidelines, DORA, GDPR)
Experience with incident response processes, ICT vendor risk oversight, and ICT governance reporting
Excellent stakeholder management skills with the ability to challenge senior leaders constructively
Fluently Englisch (C1) and good German (B2) skills
Having a professional certification (e.g., CISM, CRISC, CISSP, CISA) is a plus
Familiarity with cloud computing risks, encryption, DevOps environments, and API-driven financial platforms is a plus
Experience in consolidating multi-source ICT risk inputs into executive-level reporting is a plus
Understanding of emerging financial technologies such as blockchain, AI, and digital identity is a plus
Your benefits with us
100% remote work within Germany / home office within Germany possible
30 days annual leave
Offices with flexible workplaces in Hamburg, Eisenstadt, Warsaw, and Melbourne - all equipped with various drinks & snacks.
Our exclusive gym, next to the Hamburg office, for free use incl. personal coach for training and nutrition, available to all employees worldwide
Our unique CashBack Sport program 'Move Republic', which rewards your daily and sporting activities throughout (Germany)
An above average pension grant for your company pension scheme ('bAV') in Germany or Austria
Access to Udemy Business – grow your skills with thousands of high-quality online courses
Access to the employee benefits portal with the best shopping deals in Germany and Austria
Subsidy for the 'Deutschlandticket' (local transport subscription)
Direct communication channels through the whole company, an open feedback culture and pronounced appreciation, motivated teams and leads who interact at eye level