Job Drop BerlinYOUR WAY INTO BERLIN TECH
POST A JOBSAVED JOBSMEET A STARTUPREADSUBSCRIBE
NewsletterLinkedIn
AboutTermsImpressumPrivacy

ICT GRC - Firewall Governance Manager

NN26
Seniority
Midweight
Model
In-Office
Sector
Fintech
Salary
Undisclosed
Contract
Full-Time

About the role

This is a Firewall Governance Manager position within a newly formed ICT GRC team at N26. You'll provide independent oversight and governance of network security controls across the bank's global cloud-based firewall environment, ensuring compliance with regulatory requirements and internal policies.

What you'll do

  • Define and maintain governance controls for firewall management in line with DORA, BAIT, and MaRisk requirements
  • Conduct second-line reviews of firewall configurations, rule changes, and network segmentation
  • Challenge and assess the effectiveness of first-line firewall controls and change management processes
  • Oversee key control testing activities for network perimeter and segmentation defenses
  • Support internal and external audits by providing evidence and technical context for firewall controls
  • Maintain visibility over firewall-related risks in the ICT Risk Register and track mitigation actions
  • Collaborate with Security Engineering and Network Operations teams on architecture changes and incident response
  • Monitor compliance with DORA, BAIT, ISO 27001, and NIST standards for network security
  • Provide governance input during firewall technology lifecycle reviews and vendor assessments
  • Contribute to ICT GRC dashboards and reports for CISO Office and risk committees

What you'll need

  • 4-5 years of experience in network security, firewall administration or security operations
  • Strong understanding of enterprise firewall technologies (Palo Alto, Check Point, Fortinet, Cloudflare)
  • Knowledge of network security concepts including routing, NAT, VPN, and IDS/IPS
  • Proven experience with firewall rule audits, configuration baselines, and security hardening
  • Familiarity with ICT control frameworks and second-line assurance models
  • Strong analytical and communication skills to translate technical findings into governance context
  • Fluency in English, German language skills highly advantageous

Nice to have

  • Firewall certifications such as SANS SEC503/SEC530/SEC401, Checkpoint CCSA/CCSE/CCSM, AWS ANS-01/SCS-CO2, or Palo Alto
  • Working knowledge of EU or German financial sector regulations (DORA, BAIT, MaRisk)
  • Understanding of ISO 27001, NIST CSF, or COBIT frameworks
  • Experience with Firewall Governance tools like Tufin or AlgoSec

What they offer

  • Competitive personal development budget and work from home budget
  • Discounts on fitness, wellness memberships, language apps and public transportation
  • Premium N26 subscription plus subscriptions for friends and family
  • Additional annual leave day for each year of service
  • High degree of autonomy and access to cutting-edge technologies
  • Relocation package with visa support available
APPLY →