ICT GRC - Senior Risk & Compliance Associate

About the opportunity

Are you ready for your next career step? We are seeking a highly skilled and experienced ICT GRC -  Senior Risk & Compliance Associate to join our ICT GRC team within the CISO Office. In this pivotal role, you will ensure that our bank's IT systems and information security practices are robust, compliant with regulations, and aligned with industry best practices. You will play a crucial role in safeguarding our data, managing risks, and ensuring compliance with relevant laws and standards.

In this role you will:

• Be a part of the bank’s risk function (2nd Line of Defense) and report to the Deputy CISO within the CISO team. You will work closely with the 1st Line of Defense teams on risk management activities.
• Actively participate in the ICT Risk Management process, including proactive risk assessment, analysis, treatment plan identification, mitigation, and monitoring.
• Conduct risk assessments to identify ICT risks within the bank’s IT infrastructure proactively.
• Collaborate with various stakeholders such as product, tech, security, and other 1st Line of Defense teams to identify and agree on risk treatment plans for identified risks.
• Monitor and follow up with stakeholders on the progress of risk mitigation and treatment actions to ensure compliance.
• Manage the ICT risk exception requests and evaluate the requirements. Ensure valid risk exceptions are followed up prior to expiry.
• Maintain the ICT risk register, ensuring accuracy and completeness of the risks within the register.
• Proactively report progress and updates to the team, providing detailed reports and presentations on the status of identified risks, mitigation efforts, and compliance status. 
• Ensure that all communication is clear, actionable, and aligned with the bank's overall risk management strategy. Facilitate regular meetings with key stakeholders to discuss risk status, challenges, and next steps, fostering a culture of continuous improvement and proactive risk management. 

What you need to be successful

Background

• Bachelor's degree in Information Technology, Computer Science, Information Security, or a related field.
• Professional certifications such as CISA / CISM / CRISC, or equivalent are highly desirable.
• Minimum of 4 - 5 years of experience in IT risk management, information security, and compliance, preferably within the banking or financial services industry.
• In-depth knowledge of relevant regulatory requirements, such as MaRisk, BAIT, DORA and industry standards such as ISO 27001/27002, NIST, etc.
• Strong understanding of IT infrastructure, network security, application security, and cloud security.

Skills

• Excellent analytical and problem-solving skills, with the ability to identify and assess complex IT and information security risks.
• Strong project management skills with the ability to manage multiple tasks and projects simultaneously.
• Proficient in using risk assessment / management tools and technologies.
• Effective communication and interpersonal skills, with the ability to explain technical concepts to non-technical stakeholders.
• Strong report-writing and presentation skills.
• Ability to leverage AI tools and techniques to enhance risk assessment, compliance monitoring, and the identification of emerging threats is a strong plus.
• Fluency in English is required; German is a plus.

Traits

• Adaptable and open to learning, with a keen interest in staying up-to-date with the latest trends and developments in IT and information security.
• Passion for risk management, internal controls, and complex problem-solving.
• Detail-oriented and meticulous in ensuring accuracy and thoroughness in all tasks.
• Proactive and self-motivated, with the ability to work independently and as part of a team.
• Collaborative, able to work well with teams and stakeholders.
• Strong topic ownership and a bias for action.
• Critical thinking and a drive to improve the status quo.
• Both attention to detail and strong conceptual thinking.
• Flexibility in a fast-changing and agile environment.
• Actively help oneself and the team to be successful.
• Willingness to continuously learn and act upon direct feedback.
• High ethical standards and integrity, with a strong commitment to confidentiality and data protection.

What’s in it for you:

• Accelerate your career growth by joining one of Europe’s most talked about disruptors 🚀.
• Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation. 
• As an N26 employee you will have access to a Premium subscription on your personal N26 bank account. As well as subscriptions for friends and family members.    
• Additional day of annual leave for each year of service.  
• A high degree of autonomy and access to cutting edge technologies - all while working with a friendly team of peers of diverse nationalities, life experiences and family statuses. 
• A relocation package with visa support for those who need it.

Who we are

N26 has reimagined banking for today’s digital world. Technology and design empower everything we do and it’s how we are building the global banking platform the world loves to use.

We've eliminated physical branches, paperwork, and hidden fees for an elegant digital experience and supreme savings. Giving people the power to live and bank their way is what gets us out of bed in the morning and inspires the work that we do. 

We are headquartered in Berlin with offices in multiple cities across Europe, including Vienna and Barcelona, and a 1,500-strong team of more than 80 nationalities.

Sounds good? Apply now for this position.

Equal Opportunities:

We recognize that our strength lies in our people and the varied perspectives they bring to our workforce. We strive to build talented and diverse teams to drive our business success and empower our people to reach their full potential.

We genuinely welcome and encourage applications from people of all backgrounds, cultures, genders, sexual orientations, abilities, neurodiversities, and ages. We're committed to creating an inclusive workspace where everyone feels valued and respected, free from harassment and discrimination. If there's anything you need to make the application process work for you, please let us know by reaching out to [email protected]. 

Visit our website to learn more about Diversity, Equity, & Inclusion at N26.