Job Drop BerlinYOUR WAY INTO BERLIN TECH
POST A JOBSAVED JOBSMEET A STARTUPREADSUBSCRIBE
NewsletterLinkedIn
AboutTermsImpressumPrivacy

ICT GRC - Senior IT Governance Associate

NN26
Seniority
Senior
Model
Remote
Sector
Fintech
Salary
Undisclosed
Contract
Full-Time

About the role

You'll ensure that IT systems and information security practices are robust, compliant, and aligned with evolving regulations. You'll be the bridge between compliance, security, and technology, helping the organisation meet regulatory obligations while embracing innovation.

What you'll do

  • Create, maintain, and communicate the updates to the Governance Documentation related to Information Security and DOR for the CISO Office. This will include policy, procedure, work instructions, process flows within the CISO office and connected to the 1st line teams that are dependent on these for direction.
  • Maintain and update the TMC (Target Measure Catalogue)
  • Collaborate with first line teams to ensure the TMC (Target Measure Catalogue), and any changes thereof, are applied to the 1st line procedures and operations.
  • Ensure the mapping of Target measures to the various IT regulations and standards.
  • Perform the annual ISMS Maturity assessment and other self assessments in collaboration with the IT Compliance roles in the ICT GRC team.
  • Ensure the delivery of all the IT Audits for the CISO Office.
  • Support the members of the Risk and Compliance domains of the ICT GRC team with reporting requirements and risk assessments, including and not limited to NPP, NFR Top-Down assessment.
  • Explore AI-driven approaches to streamline compliance monitoring, automate assessments, and improve regulatory alignment.

What you'll need

  • Minimum of 3 to 4 years of experience in IT risk management, information security, and compliance, preferably within the banking or financial services industry.
  • Bachelor's degree in Information Technology, Computer Science, Information Security, or a related field.
  • Professional certifications such as CISA / CISM / CRISC, or equivalent are highly desirable.
  • In-depth knowledge of relevant regulatory requirements, such as MaRisk, BAIT, DORA and industry standards such as ISO 27001/27002, NIST, etc.
  • Strong understanding of IT infrastructure, network security, application security, and cloud security.
  • Excellent analytical and problem-solving skills, with the ability to identify and assess complex IT and information security risks.
  • Effective communication and interpersonal skills, with the ability to explain technical concepts to non-technical stakeholders.
  • Fluency in English required; German (fluent or basic) preferred, with willingness to learn.

Nice to have

  • Proficient in using JIRA, Confluence and Figjam.
  • Ability to leverage AI tools and automation techniques to enhance internal processes.

What they offer

  • Competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation.
  • Premium N26 bank account subscription and subscriptions for friends and family members.
  • Additional day of annual leave for each year of service.
  • Hybrid work setup combining in-office collaboration with work from home flexibility.
  • Relocation package with visa support for those who need it.
APPLY →