Regarding the position
The part
Our ambitions for tomorrow are ambitious. Our goal is to make sustainable finance a central component of society. Let's get started since it is a lot of effort. Protecting our company's information assets and making sure cybersecurity regulations are followed are your duties as our Information Security Officer (f/m/x).
Among your responsibilities will be:
. putting into practice and modifying the Information Security Management System (ISMS) in accordance with partner agreements, laws, and cybersecurity standards (such as ISO 27001.
. To keep information security policies, procedures, and guidelines up to date and functional, they must be developed, reviewed, and updated.
assessing, suggesting, and putting into practice security solutions and technology to improve the security posture of the company.
. Organizing and directing the completion of thorough information security (IS) risk assessments, which take third-party risks into account.
. notifying the appropriate stakeholders within the company of information security-related events and dangers.
. managing and directing crisis management and incident response efforts pertaining to risks and breaches in information security.
. assisting the legal department in assessing and guaranteeing adherence to pertinent regional information security laws and rules.
. Overseeing and conducting penetration testing and external security audits to find weaknesses and guarantee our security posture is continuously improved.
. collaborating with an internal "security community of practice" (CoP) to define and carry out a security roadmap.
What we're trying to find
. You hold a bachelor's degree in computer science, information technology, or a comparable discipline.
. You are certified in professional security management.
. You possess hands-on expertise in both information security and risk management.
. Common information security certifications and standards, such ISO 27001, SOC 2, MaRisk, NIS2, and Dora, have become familiar to you.
. You approach your task with efficiency, motivation, and organization.
. You have previously worked in a setting where you were tasked with managing and interacting with multidisciplinary, cross-functional teams.
. Ideally, you would additionally bring expertise from a financial business that is regulated by BaFin.
. Experience negotiating contracts and vendors, as well as familiarity with cloud computing platforms, are additional benefits, albeit they are not strictly required.
. You can write and speak German and English with ease.
. You are in favor of utilizing money as a tool for good in order to build a better future for all.
What we provide
We guarantee that it will also be enjoyable! Every day, you will collaborate with over 100 like-minded colleagues to promote sustainable finance. Our principles, our proactive new work ethic, and our specific, lofty objectives form the foundation of our culture. However, meeting us and experiencing Tomorrow for yourself is the greatest way to learn more about us.
Annual salary of 85,000–100,000 euros plus a one-time payment of 50,000 euros in virtual shares Transparency reigns supreme. For this reason, we include a range of salaries for every employment. We can evaluate you on an individual basis and determine your place in our open compensation matrix once we have had a chance to interview you and learn more about you.
Do you wish to work from home?
Every employee at Tomorrow should have the freedom to arrange their personal lives and work schedules however they see fit, according to their own needs. Therefore, mobile work and working from home are essential components of our remote-friendly workplace culture. On the other hand, we think that working together in person has many benefits. The ideal location for this is our wonderful office in Hamburg, which is always open to you. Our office provides flexible workspace design options, ground-level access, and wheelchair accessibility. Together with your team, you may decide how many hours you spend on-site to fit your job at Tomorrow. Working remotely from any location in Germany for up to 100% of the time is an option for our Information Security Officer (f/m/x).
What will happen next?
You are cordially invited to join our community. For this reason, even if you don't believe you meet all the standards yet, we want to meet you at eye level and encourage you to come as you are. We require the following from you if you want to cooperate with us:
. Your résumé without a photo or your date of birth
. Your desired beginning date and pay expectations.
. A few words describing why you want to work with us to create the banking of the future
Furthermore, in order for us to consider your chosen name or pronoun during the application process, we would appreciate it if you could let us know how you would like to be addressed.