INFORMATION SECURITY MANAGER (f/m/d)
INFORMATION SECURITY MANAGER (f/m/d)
Posted on :
17-05-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Your Role
As InformationSecurityManager and part of the Security&Privacy Governance team you will steer our ISO27001:2022 certified informationsecuritymanagement system (ISMS) drive compliance with the EU Digital Operational Resilience Act (DORA) and align our controls to international regulations such as the CFTC System Safeguards Requirements and Singapores MAS Technology Risk Management (TRM) Guidelines.
Your Responsibilities
Governance & ICT Risk
- ISMS Ownership: Maintain and enhance our ISO 27001:2022 ISMS and policy framework.
- DORA Alignment: Implement the acts requirements on ICTrisk governance incident reporting and thirdparty oversight ahead of the 17 Jan 2025 golive.
- Global Regulatory Mapping ensure our control set also meets CFTC System Safeguards for automated trading systems and MAS TRM principles on governance access control and cloud security.
- ICTRisk Assessments:Run risk analyses in line with regulations best practices ThreeLinesofDefence model reporting residual risk to senior management.
- SecuritybyDesign Reviews: Advise product teams on secure architecture zerotrust networking and segregation of duties.
- Control Lifecycle:Define monitor and improve technical controls (vulnerability management hardening baselines privileged access) together with Development Infrastructure and SRE teams.
- Tooling Strategy:Manage use and optimise our threat intelligence security events intrusion detection deception and similar platforms. Ensure coverage effectiveness efficiency and automation.
- Incident Response:Manage the NISTaligned lifecycle (prepare detect contain eradicate recover lessons learned) and meet the multijurisdiction requirements and timelines set by our regulators and expected by our clients.
- Assess & Improve:Use threat intelligence vulnerability reports and similar news sources to assess changes in landscape threats and best practices and provide thoughtful innovative and practical guidance to improve our processes and systems.
- TableTop & PurpleTeam Drills: Coordinate regular exercises to validate controls and drive continuous improvement.
- Awareness & Training:Deliver engaging securityawareness sessions and microlearnings for developers sales and operations staff.
- Client & Audit Liaison:Help answer RFPs coordinate ISO/DORA and other audits and support duediligence requests from counterparties worldwide.
Your Profile
- University degree in computer science or a comparable education
- 5 years of experience in the IT security domain. Certifications are a plus (CISSP CRISC CISM ISO27001 Lead Implementer or Auditor)
- Working knowledge in implementing and maintaining security certifications (ISAE3402 SOC1 SOC2 ISO2700x) and maintaining compliance to national and international security data protection and privacy standards laws and regulations
- Experience in the development of practical security processes policies and standards. Ability to work with multiple sometime conflicting goals and priorities
- Experience in the management of information security issues and incidents
- Excellent analytical and conceptual thinking able to understand structure and prepare/explain complex topics on the appropriate level depending on context and recipient
- Track record of taking responsibility working independently and without much supervision
- Highly motivated to learn about new topics technologies and business cases
- Highly proficient in spoken and written English (CEF C1 or above) is mandatory. Very good command of German language (CEF B2 or above) is desirable
Our Offer
- Clear career concept
- Performance appraisals on a regular base
- Possibility to switch between Software Development teams according to interests projects and skills.
- 360T Academy
- Frankfurt office located directly in the city center
- Social gatherings
How to Apply
If your background and qualifications meet these specifications please forward your application including your salary expectation and the earliest starting date by clicking the Apply button.
Contact
Irune Del Buey
People & Culture Manager
Send email
Grneburgweg 1618
60322 Frankfurt am Main
People & Culture Manager
Send email
Grneburgweg 1618
60322 Frankfurt am Main
About us
360T is a regulated global marketplace for Foreign Exchange (FX). As Deutsche Brse Groups powerhouse for FX 360T provides a broad range of trading solutions and related services to both buyside and sellside firms.
Since its inception in 2000 the company has developed and maintained a stateoftheart multibank portal for foreign exchange cash and money market products. It has recently expanded its instrument offering to include crypto NDFs and commodities (base metals and energy).
With over 2900 buyside customers and more than 200 liquidity providers across 75 different countries 360T is uniquely positioned to connect the global FX industry.
Headquartered in Frankfurt am Main Germany 360T maintains subsidiaries in New York (360 Trading Networks Inc) London (360 Trading Networks UK Ltd) Singapore (360T Asia Pacific Pte. Ltd.) Mumbai (ThreeSixty Trading Networks (India) Pvt Ltd) Kuala Lumpur (360 Trading Networks Sdn Bhd) and Dubai (360 Trading Networks (DIFC) Limited).
Since its inception in 2000 the company has developed and maintained a stateoftheart multibank portal for foreign exchange cash and money market products. It has recently expanded its instrument offering to include crypto NDFs and commodities (base metals and energy).
With over 2900 buyside customers and more than 200 liquidity providers across 75 different countries 360T is uniquely positioned to connect the global FX industry.
Headquartered in Frankfurt am Main Germany 360T maintains subsidiaries in New York (360 Trading Networks Inc) London (360 Trading Networks UK Ltd) Singapore (360T Asia Pacific Pte. Ltd.) Mumbai (ThreeSixty Trading Networks (India) Pvt Ltd) Kuala Lumpur (360 Trading Networks Sdn Bhd) and Dubai (360 Trading Networks (DIFC) Limited).
Required Experience:
Manager
Employment Type
Full-Time
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
