Governance & Compliance

• Implement and maintain information security policies and procedures in line with international standards and regulatory frameworks (e.g. ISO 27001, NIST, GDPR, DORA).


• Design, implement, and continuously improve the Information Security Management System (ISMS).


• Oversee and maintain Business Continuity and resilience plans, including back‑up testing, recovery procedures, and crisis scenarios.

Risk Management

• Manage Third‑Party Risk Assessments, including security evaluations of new vendors and partners.


• Conduct security assessments and risk analyses for internal projects and specific business requests.


• Define, monitor, and follow up on risk mitigation plans.


• Track developments related to threats, vulnerabilities, and emerging technologies to continuously adapt the security strategy.

Security Operations (S...