Social network you want to login/join with:
INFORMATION SECURITY MANAGER (f/m/d), Frankfurt
Client:
360T
Location:
Frankfurt, Germany
Job Category:
Other
EU work permit required:
Yes
Job Reference:
61891d4ef1ac
Job Views:
4
Posted:
30.06.2025
Expiry Date:
14.08.2025
Job Description:
Your Role
As Information Security Manager and part of the Security & Privacy Governance team, you will steer our ISO27001:2022 certified information‑security‑management system (ISMS), drive compliance with the EU Digital Operational Resilience Act (DORA), and align our controls to international regulations such as the CFTC System Safeguards Requirements and Singapore’s MAS Technology Risk Management (TRM) Guidelines.
Your Responsibilities
* Governance & ICT Risk: Maintain and enhance our ISO 27001:2022 ISMS and policy framework.
* DORA Alignment: Implement the act’s requirements on ICT-risk governance, incident reporting, and third-party oversight ahead of the 17 Jan 2025 go-live.
* Global Regulatory Mapping — ensure our control set also meets CFTC System Safeguards for automated trading systems and MAS TRM principles on governance, access control, and cloud security.
* ICT-Risk Assessments: Run risk analyses in line with regulations, best practices, Three-Lines-of-Defence model, reporting residual risk to senior management.
Engineering & Operations (First-Line Enablement)
* Security-by-Design Reviews: Advise product teams on secure architecture, zero-trust networking, and segregation of duties.
* Control Lifecycle: Define, monitor, and improve technical controls (vulnerability management, hardening baselines, privileged access) together with Development, Infrastructure, and SRE teams.
* Tooling Strategy: Manage, use, and optimize our threat intelligence, security events, intrusion detection, deception, and similar platforms. Ensure coverage, effectiveness, efficiency, and automation.
Detection & Response
* Incident Response: Manage the NIST-aligned lifecycle (prepare, detect, contain, eradicate, recover, lessons learned) and meet the multi-jurisdiction requirements and timelines set by our regulators and expected by our clients.
* Assess & Improve: Use threat intelligence, vulnerability reports, and similar news sources to assess changes in landscape, threats, and best practices, and provide thoughtful, innovative, and practical guidance to improve our processes and systems.
* Table-Top & Purple-Team Drills: Coordinate regular exercises to validate controls and drive continuous improvement.
People & Culture
* Awareness & Training: Deliver engaging security-awareness sessions and micro-learnings for developers, sales, and operations staff.
* Client & Audit Liaison: Help answer RFPs, coordinate ISO/DORA and other audits, and support due-diligence requests from worldwide counterparties.
Your Profile
* University degree in computer science or comparable education
* 5+ years of experience in IT security. Certifications like CISSP, CRISC, CISM, ISO27001 Lead Implementer or Auditor are a plus.
* Experience in implementing and maintaining security certifications (ISAE3402, SOC1, SOC2, ISO2700x) and maintaining compliance with security, data protection, and privacy standards, laws, and regulations.
* Experience in developing security processes, policies, and standards, and working with conflicting goals and priorities.
* Experience managing information security issues and incidents.
* Excellent analytical and conceptual thinking skills.
* Proven ability to work independently and take responsibility.
* Motivated to learn about new topics, technologies, and business cases.
* Proficiency in English (CEF C1 or above) is mandatory; good German (CEF B2 or above) is desirable.
Our Offer
* Clear career path
* Regular performance appraisals
* Opportunity to switch between software development teams
* 360T Academy
* Office located in Frankfurt city center
* Social gatherings
We offer an outstanding opportunity for a highly motivated individual to participate in the growth of a successful technology company in the financial sector. The position is based in Frankfurt am Main and is available immediately.
How to Apply
If your background and qualifications meet these specifications, please forward your application including your salary expectation and earliest start date by clicking the “Apply” button.
Contact
Irune Del Buey
People & Culture Manager
Grüneburgweg 16-18
60322 Frankfurt am Main
About us
360T is a regulated, global marketplace for Foreign Exchange (FX). As Deutsche Börse Group’s FX powerhouse, 360T offers a broad range of trading solutions and services to buy-side and sell-side firms worldwide.
#J-18808-Ljbffr