IT Security Manager Risk, Compliance & DORA (m/f/d)

End-to-end control of the DORA implementation programme (priorization, roadmap, milestones, status reports) Conducting gap and ripeness analysis against DORA, MaRisk / KAIT, BAIT as well as EBA / EIOPA / EBA-ICT guidelines (if relevant) Current improvement of ICT risk management, including risk assessment, KRIs, risk register and treatment Definition of Impact Tolerances, Implementation of BIA, Construction / Development / Implementation of BCM / DR tests DORA compliant control of critical ICT service providers: due diligence, contractual clauses, performance and risk monitoring, exit strategies Planning and execution of tests of digital operational resilience (e.g. scenario/crisis exercises, red team/pen tests – proportional to profile) control and monitoring of internal and external audits; Management of findings up to timely processing Preparation of regulatory messages / notifications (e.g. incident reports) and communication with the supervisor Very good German knowledge (min. B2), good English knowledge

Completed studies in (economic) informatics, information security, risk / compliance or a comparable qualification Multiannual relevant professional experience in information security / ICT risk management, of which at least first experience with focus on DORA or comparable frameworks (e.g. NIS2, ISO 27001, BAIT / KAIT, EBA / EIOPA guidelines) Experience in regulated financial environments (KVG, banks, insurance, FinTech, ...) and their implementation Practice in audit preparation, audit management and management of supervisory authorities Structured, solution-oriented operation with high responsibility for earnings Ability to communicate complex facts addressably

Attractive Area of Task in a Future Sector / Sustainability Modern office in central location in Hamburg city centre, two days mobile work Modern IT systems with high safety standards Attractive salary package incl. pension, accident insurance Health management .