Plus
Включить Plus
Назад
Company hidden
2 дня назад

Information Security Officer (Fintech)

Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
Sweden
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Information Security Officer (Fintech): Managing and operating the information security framework, risk assessments, and third-party oversight within a regulated payment environment with an accent on GRC and regulatory compliance. Focus on translating complex regulations like DORA and NIS 2 into actionable policies and maintaining the ISMS.

Location: Hybrid in Stockholm, Sweden

Company

A global leader in Open Banking Payments establishing Pay by Bank as the new standard at checkout.

What you will do

  • Develop and maintain the information security framework (ISMS) aligned with regulatory requirements and industry standards.
  • Lead information security risk assessments, define risk treatment plans, and maintain the risk register.
  • Assess the security posture of third-party vendors, define contractual requirements, and drive remediation of gaps.
  • Ensure business continuity, disaster recovery, and crisis management capabilities meet regulatory requirements.
  • Coordinate internal and external audits, manage certifications, and respond to customer due diligence requests.
  • Promote security awareness across the organization and manage the security incident and exception processes.

Requirements

  • 5+ years of experience in information security, focusing on GRC, preferably in regulated financial services or payments.
  • Strong working knowledge of ISO/IEC 27001.
  • Practical experience translating regulations such as DORA, NIS 2, PSD2, and EBA guidelines into policies.
  • Proven experience with third-party risk management across the vendor lifecycle.
  • Fluent in English, written and spoken.
  • Experience leading teams or managing large-scale security projects.

Nice to have

  • Familiarity with the NIST CSF framework.
  • Relevant certifications such as CISM, ISO 27001 Lead Implementer, CISA, or CISSP.
  • Fluency in Swedish.

Culture & Benefits

  • 20 to 30 days of annual holiday.
  • Monthly team outing allowance for social events.
  • Parental leave top-up for new parents.
  • Daily breakfast and on-site perks.
  • Well-being support including health allowance for gym memberships and massages.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →