Sport Alliance GmbH
Get AI-powered advice on this job and more exclusive features.
We are a leading FinTech company at the forefront of digital payment innovation, operating in one of the most heavily regulated financial environments. Our mission is to deliver secure, scalable, and customer‑centric financial solutions while maintaining uncompromising adherence to international regulatory standards. By combining technological innovation with rigorous compliance frameworks, we empower businesses and consumers to transact with confidence.
As our ICT Risk Manager (m/f/d), you will play a pivotal role in protecting the resilience and integrity of our financial systems. Positioned at the intersection of technology, risk, and governance, you will challenge senior stakeholders, drive risk‑aligned decision‑making, and ensure our ICT risk posture meets both regulatory expectations and business objectives. This is a unique opportunity to influence the company’s strategic ICT resilience in an environment that thrives on innovation within compliance.
Responsibilities
Act as the second line of defence by challenging the CISO, IT Security Architect, DevSecOps Team, and Business Units on ICT control adequacy and risk appetite alignment.
Consolidate insights from quarterly ICT risk inventories, incident summaries, and vendor risk reports into actionable recommendations.
Oversee ICT risk assessment processes and ensure alignment with regulatory frameworks such as DORA, EBA, and GDPR.
Partner with Incident Response, Vendor Risk, and Security Testing teams to assess, escalate, and remediate ICT risks.
Prepare and deliver consolidated ICT risk reports for executive leadership, Head Risk, and Management.
Support ongoing improvement of ICT governance processes, including risk identification, monitoring, and reporting.
Ensure ICT risk management practices remain robust against evolving threats and emerging technologies.
Qualifications
Bachelor’s degree in Information Security, Risk Management, Computer Science, or related field.
Minimum 3+ years of ICT risk management experience within financial services or FinTech.
Strong knowledge of risk frameworks (e.g., ISO 27005, NIST, COBIT) and regulatory requirements (e.g., EBA outsourcing guidelines, DORA, GDPR).
Experience with incident response processes, ICT vendor risk oversight, and ICT governance reporting.
Excellent stakeholder management skills with the ability to challenge senior leaders constructively.
Fluently English (C1) and good German (B2) skills.
Having a professional certification (e.g., CISM, CRISC, CISSP, CISA) is a plus.
Familiarity with cloud computing risks, encryption, DevOps environments, and API‑driven financial platforms is a plus.
Experience in consolidating multi‑source ICT risk inputs into executive‑level reporting is a plus.
Understanding of emerging financial technologies such as blockchain, AI, and digital identity is a plus.
Benefits
100% remote work within Germany / home office within Germany possible.
30 days annual leave.
Offices with flexible workplaces in Hamburg, Eisenstadt, Warsaw, and Melbourne – all equipped with various drinks & snacks.
Our exclusive gym, next to the Hamburg office, for free use including a personal coach for training and nutrition, available to all employees worldwide.
Our unique CashBack Sport program "Move Republic", which rewards your daily and sporting activities throughout Germany.
An above average pension grant for your company pension scheme ("bAV") in Germany or Austria.
Access to Udemy Business – grow your skills with thousands of high‑quality online courses.
Access to the employee benefits portal with the best shopping deals in Germany and Austria.
Subsidy for the "Deutschlandticket" (local transport subscription).
Direct communication channels throughout the company, an open feedback culture, and pronounced appreciation, motivated teams and leads who interact at eye level.
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Finance and Sales
Frankfurt am Main, Hesse, Germany
#J-18808-Ljbffr
We are a leading FinTech company at the forefront of digital payment innovation, operating in one of the most heavily regulated financial environments. Our mission is to deliver secure, scalable, and customer‑centric financial solutions while maintaining uncompromising adherence to international regulatory standards. By combining technological innovation with rigorous compliance frameworks, we empower businesses and consumers to transact with confidence.
As our ICT Risk Manager (m/f/d), you will play a pivotal role in protecting the resilience and integrity of our financial systems. Positioned at the intersection of technology, risk, and governance, you will challenge senior stakeholders, drive risk‑aligned decision‑making, and ensure our ICT risk posture meets both regulatory expectations and business objectives. This is a unique opportunity to influence the company’s strategic ICT resilience in an environment that thrives on innovation within compliance.
Responsibilities
Act as the second line of defence by challenging the CISO, IT Security Architect, DevSecOps Team, and Business Units on ICT control adequacy and risk appetite alignment.
Consolidate insights from quarterly ICT risk inventories, incident summaries, and vendor risk reports into actionable recommendations.
Oversee ICT risk assessment processes and ensure alignment with regulatory frameworks such as DORA, EBA, and GDPR.
Partner with Incident Response, Vendor Risk, and Security Testing teams to assess, escalate, and remediate ICT risks.
Prepare and deliver consolidated ICT risk reports for executive leadership, Head Risk, and Management.
Support ongoing improvement of ICT governance processes, including risk identification, monitoring, and reporting.
Ensure ICT risk management practices remain robust against evolving threats and emerging technologies.
Qualifications
Bachelor’s degree in Information Security, Risk Management, Computer Science, or related field.
Minimum 3+ years of ICT risk management experience within financial services or FinTech.
Strong knowledge of risk frameworks (e.g., ISO 27005, NIST, COBIT) and regulatory requirements (e.g., EBA outsourcing guidelines, DORA, GDPR).
Experience with incident response processes, ICT vendor risk oversight, and ICT governance reporting.
Excellent stakeholder management skills with the ability to challenge senior leaders constructively.
Fluently English (C1) and good German (B2) skills.
Having a professional certification (e.g., CISM, CRISC, CISSP, CISA) is a plus.
Familiarity with cloud computing risks, encryption, DevOps environments, and API‑driven financial platforms is a plus.
Experience in consolidating multi‑source ICT risk inputs into executive‑level reporting is a plus.
Understanding of emerging financial technologies such as blockchain, AI, and digital identity is a plus.
Benefits
100% remote work within Germany / home office within Germany possible.
30 days annual leave.
Offices with flexible workplaces in Hamburg, Eisenstadt, Warsaw, and Melbourne – all equipped with various drinks & snacks.
Our exclusive gym, next to the Hamburg office, for free use including a personal coach for training and nutrition, available to all employees worldwide.
Our unique CashBack Sport program "Move Republic", which rewards your daily and sporting activities throughout Germany.
An above average pension grant for your company pension scheme ("bAV") in Germany or Austria.
Access to Udemy Business – grow your skills with thousands of high‑quality online courses.
Access to the employee benefits portal with the best shopping deals in Germany and Austria.
Subsidy for the "Deutschlandticket" (local transport subscription).
Direct communication channels throughout the company, an open feedback culture, and pronounced appreciation, motivated teams and leads who interact at eye level.
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Finance and Sales
Frankfurt am Main, Hesse, Germany
#J-18808-Ljbffr