We're looking for a Manager-level Information Security Assessor to join the Second Line of Defense, helping to strengthen our internal security audit, assurance, and oversight capabilities. This role plays a key part in challenging first-line control implementation, supporting regulatory readiness, and ensuring alignment with frameworks like DORA, ISO 27001, and BAIT.What You'll Do:Perform independent assessments of information security controls, including within outsourced environmentsLead and evolve our security assurance methodology, audit planning, and reporting practicesReview compliance with internal security policies and external regulatory requirementsProvide challenge and oversight to 1LoD on control effectiveness, remediation, and exception handlingContribute to senior risk reporting, metrics, and regulatory reviewsWhat You Bring:5+ years of experience in Information Security, IT Audit, or Risk, ideally in Financial ServicesSolid knowledge of security standards (ISO 27001, NIST, COBIT) and regulatory frameworks (DORA, BAIT, MaRisk)Strong reporting and stakeholder engagement skills, with the ability to influence across the businessPreferred certifications: CISA, CISSP, CRISC, or ISO 27001 Lead AuditorFluent in German & Englis #J-18808-Ljbffr