N26 has reimagined banking for today's digital world. Technology and design empower everything we do and it's how we are building the global banking platform the world loves to use. Giving people the power to live and bank their way is what gets us out of bed in the morning and inspires the work that we do.
In this role, you'll act as the control owner and subject matter expert for network security governance across the bank's firewall environment.
While the first line teams manage day-to-day operations and configurations, you'll ensure that firewall management practices meet internal policies, regulatory expectations (DORA, BAIT, MaRisk), and industry standards. You'll review, challenge, and guide the first line's technical controls, perform independent assurance activities, and drive continuous improvement of firewall and network-related security controls across the bank's infrastructure.
Define, maintain, and enhance governance controls for firewall management in line with internal policies, DORA, and BaFin requirements.
Conduct second line reviews of firewall configurations, rule changes, and network segmentation to ensure compliance and risk reduction.
Challenge and assess the effectiveness of first line firewall controls, including rule review, change management, and logging or monitoring processes.
Oversee and document key control testing activities for network perimeter and segmentation defenses as part of the ICT control framework.
Support internal and external audits, as well as regulatory reviews, by providing evidence and technical context for firewall-related controls.
Collaborate closely with Security Engineering and Network Operations teams on architecture changes, rule optimizations, and incident response actions involving network layers.
Monitor compliance with DORA, BAIT, ISO 27001, and NIST standards related to network and perimeter security.
Contribute to ICT GRC dashboards, reports, and control testing summaries shared with the CISO Office and Non-Financial Risk Committee.
Working knowledge of EU and German financial sector regulations, including DORA, BAIT, and MaRisk.
~ Fluency in English and German required
~ Can bridge the gap between technical teams and risk or compliance stakeholders.
Want to influence how network and perimeter security is governed in a digital-first bank.
What's in it for you:
Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation.
As an N26 employee you will have access to a Premium subscription on your personal N26 bank account. A relocation package with visa support for those who need it.