Information Security Manager / Risk Officer (m/f/d) [Finland]

 

ABOUT US

Companies shouldn’t have to struggle to buy things. They should be able to empower their employees, have control over what they spend on, and save as much time and money as possible. Since 2020, Pliant has been on a mission to enable organizations to do just that. With its app-based solution, Pliant gives companies the ability to issue physical and digital credit cards, track spends, and seamlessly integrate all of this data to an entire ecosystem of other finance and accounting tools. Moreover, with a program called Pliant Earth, companies gain an easy means to combat climate change by allowing them to offset their CO2 emissions automatically through certified providers.

Pliant is on a path of growing quickly. With our expansion into 9 international markets, we believe that people, passion, and diversity are the key ingredients to our future success. Our growing team of 100+ Plianteers come from 25 nationalities and work remotely or in a hybrid environment from our headquarters in the heart of Berlin. And we’re looking for more talented and committed people to join us on our journey!

ABOUT THE ROLE:

Pliant Oy gained an EMI license from the Finnish Financial Supervisory Authority in 2023, and as a result of this achievement we are now looking for a new Information Security Manager / Risk Officer (m/f/d) professional to join the group compliance team based in Finland.

WHAT YOU’LL DO:

• Maintain and implement a compliant security framework, including security governance, policies and procedures, and actively participate in the development of risk assessment framework
• Serve as the primary contact for security-related matters in communications internally and with our regulatory authority and other external parties, including customers and partners
• Collaborate with other stakeholders, such as Technology and Operations, to ensure our operations are compliant with relevant regulations and standards, including ISO 27001, PSD2 and PCI DSS
• Manage internal and external audits in the area of information security, including ISO 27001, PSD2 and PCI DSS
• Conduct relevant internal and external Information Security reporting
• Build and maintain efficient Business Continuity Management and Incident Response frameworks
• Monitor and assess the security of third-party service providers and vendors
• Build and obtain sufficient tools and services to support Information Security Management, manage budget and security strategy, in collaboration with management and stakeholders
• Design, develop and implement relevant information security training and awareness across the business
• Maintain the GRC framework covering risk policies, risk assessments, internal control systems, procedures and reporting, and ensure they are implemented appropriately
• Manage internal and external audits in the areas of Credit and Operational Risks, including regulatory and certification audits
• Take over 2nd LoD oversight on credit risk, including assurance and reporting activities.
• Develop Credit Rating model, together with internal stakeholders and define risk strategy to ensure a controlled risk level and a responsible credit risk activity
• Implement Operational Risk Processes, including incident reporting and Business Continuity Measures
• Ensure management of Outsourced functions is compliant with relevant local and EBA regulation and best industry practices
• Design, develop and implement relevant risk management training and awareness across the business

WHAT YOU’LL BRING

• Several years of experience on Information Security in regulated environment
• Knowledge on ISO 27001 implementation and audits highly appreciated
• Knowledge of relevant financial regulation, i.e. PSD2, DORA and EBA requirements are appreciated
• Several years of experience on Credit Risk management on Financial Sector
• Experience on Credit Risk reporting and risk scoring is highly appreciated
• Knowledge of or willingness to learn Operational Risk Management procedures is a must

WHAT WE OFFER

• The opportunity to work in a growing team with big responsibilities that thrives on a strong exchange of knowledge and excellence
• Attractive remuneration
• Flat hierarchy and transparent communication in a relaxed, professional atmosphere
• Opportunity to develop your talent in a dynamic team with ambitious goals
• Flexibility and possibility to work remotely
• Company card with a monthly allowance for lunches, coffee, etc. with co-workers

$ads={2}

 

.

$ads={1}