Senior Security& Compliance Officer (m/f/d)


This is an exciting opportunity for you join our ED IT Security and Compliance team to engage on all physical and information security matters and to report and summarize all related matters to our CEO

You are responsible for various elements of IT Governance, Risk, Compliance and Cyber Security activities. You will identify potential areas of compliance vulnerability and risk, develop and recommend corrective action plans for resolution of problematic issues, and provide general guidance on how to avoid or resolve similar situations in the future.

If you are the kind of person that thinks outside the box then we are looking forward to hearing from you. Our team values your unique perspectives, contributions, experiences and ideas, and we’re determined to think differently.

Your Responsibilities:

  • Responsible for defining IT governance, risk and compliance program elements and monitoring active IT compliance
  • Develop and maintain policies, procedures, and standards
  • Work closely with managers within IT and across the business to prevent illegal, unethical, or improper conduct
  • Develop, implement, and enhance audit and compliance tracking processes in order to ensure adherence to IT policies and guidelines as well as regulatory compliance
  • Responsible for Information Assurance as the assigned ISSM Cyber Security manager
  • Perform information security and vulnerability assessments and penetration testing
  • Implement and maintain a security incident and event management plan
  • Provide timely communication and reporting related to security events (real time, trends), security incident management tracking and follow up
  • Ensure all IT Security & Compliance related activities owned and undertaken are coordinated, controlled, reported, scheduled, timetabled and assigned
  • Advocate for best practices and IT compliance to promote an IT Security Culture

Your professional & personal profile:

  • Educated to degree level or equivalent academic credit
  • 5+ years of relevant experience
  • Project delivery experience is required to be considered for this role
  • Certifications related to IT Compliance and IT Security necessary (e.g. COBIT, CISSP, CISM)
  • Qualification or qualifying experience in IT Governance, Compliance and IT Security
  • Solid technical background, with deep understanding of IT
  • Ability to take initiative and independently manage several tasks and projects simultaneously with attention to detail
  • Solid organizational skills including attention to detail and multi-tasking skills
  • Excellent written and verbal communication skills
  • English to business standard (written and oral)
  • Strong knowledge of Microsoft Office
  • Working knowledge of ISO27001 is a plus

We Offer You:

  • A secure workplace and an international work environment in Frankfurt
  • Flat hierarchies and an open-door policy
  • Open and active team culture with regular events
  • The chance to develop professionally on a highly international and motivated team
  • Interesting projects with practical and entrepreneurial experience
  • Annual bonus based on results of individual objectives
  • Benefits (30 days holidays, SODEXO benefits pass, JobTicket RMV (annual ticket for public transportation Zone Frankfurt 3) or JobRad, flexible working hours
  • Budget for training

Additional Information:

  • Eligibility: We only accept applications with the eligibility to work in Europe
  • Working time: part-time contract
  • Place: Frankfurt (Germany)

Are you interested in this challenge?

If this sounds like your future position, then join us to make a difference. We are looking forward to meeting you in person.

Please send us your complete application (including your salary expectation) and your possible earliest start date to the following email address:

What we need:

  • Current CV
  • Criminal record certificate
  • Letters of reference
  • Copy of your university degrees and certificates

For any further inquiries please contact Kerstin Krause at +49 (0) 69 50986 9322

Converting Data into Market Trust

The European DataWarehouse (ED) is the first central data warehouse in Europe for collecting, validating and making available for download detailed, standardised and asset class specific loan level data (LLD) for Asset-Backed Securities (ABS) transactions. Developed, owned and operated by the market, ED helps to facilitate risk assessment and to improve transparency standards for European ABS deals.