ICT and Cybersecurity Specialist

EPG is a fast-growing company operating in the fintech space creating exciting products and offering innovative payment solutions. We are now looking for an experienced ICT and Cybersecurity Specialist to join a dedicated and committed team. Here at EPG, we lead the way in not only providing a secure service experience but delivering it with excellence. 

The Internal Controls Department supports and supervises the Executive and Business Management with a value-oriented approach and is seeking to strengthen its risk control and monitoring team, by adding a senior specialist in the ICT and Security area. The ICT and Cybersecurity Specialist (m/f/d) will join the Internal Controls (IC) Function and will execute, coordinate and/or supervise advisory, monitoring and review programs targeting IT/ICT & Cyber risks in operational processes related to PSP (payments) and e-money. 

Responsibilities:

• In the position of ICT and Cybersecurity Specialist (m/f/d), you will actively participate in key implementation projects to ensure security-by-design principles are integrated into all project steps and actions as well as to collaborate with project teams to identify and mitigate potential security risks throughout the project lifecycle
• Moreover, you will take charge of coordinating both internal and external audit functions and reviews, specifically related to ISO standards and ICT regulatory requirements and ensure that the organization's ICT systems and cybersecurity practices align with industry standards and regulatory expectations
• You develop and conduct comprehensive training sessions for internal users, covering IT policies and best practices in addition to providing and supporting all hierarchical levels, ranging from junior employees to members of the Board, to ensure a consistent understanding of security protocols
• Furthermore, you will assume ownership of assigned tasks and projects for monitoring new projects, technologies, release practices, regulatory changes, emerging risks, and incidents to apply a focused approach to prioritize and assess risks associated specifically with ICT, utilizing a thorough risk level scoring methodology
• Last but not least, you will collaborate seamlessly with various stakeholders, including IT and Business Process Operators, Management, Audit Committee Members, and Regulators and foster effective communication channels to share insights, address concerns, and drive coordinated risk management efforts.

Qualifications:

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC)
• Several years of experience in information security, cybersecurity, risk management, or a related field, with a significant portion of that experience in roles of increasing responsibility as well as experience in project management, especially related to security-focused implementations and risk assessments
• Proficiency in understanding and assessing cybersecurity risks and vulnerabilities in IT systems and infrastructure plus, knowledge of security frameworks (ISO 27001, NIST Cybersecurity Framework) and relevant regulations (GDPR, HIPAA, etc.)
• Familiarity with security-by-design principles and their application in project lifecycles. Understanding of emerging technologies and their potential security implications
• Leadership qualities to drive security initiatives and create a culture of security awareness within the organization
• Awareness of industry trends, best practices, and evolving threats in the realm of information security and risk management.

• General conditions: Flexible working time models, hybrid work model, competitive salary 
• Advanced training & career: High degree of personal responsibility, diverse development opportunities throughout the entire group of companies 
• Team & Community: Open door attitude, friendly corporate culture, staff events, departmental events 
• Exclusive offers: Local offers and a great office location