Information Security Governance, Risk & Compliance (GRC) Specialist

At myPOS, we’re all about helping businesses grow and get paid. We make payments simple, smart, and accessible for everyone, but we’re more than just payment solutions -myPOS is a partner in growth. From free multicurrency accounts to powerful e-commerce tools, we’re here to support business owners of all sizes and everyone out there who dreams of starting their own business.

As we are expanding our team, we’re looking for Information Security Governance, Risk & Compliance (GRC) Specialist to help us make a real difference in the Fintech industry. Ready to join us and shape the future of payments? Let’s make it happen!

About the role:

The Information Security GRC Specialist will play a pivotal role in shaping and driving the security strategy of the organization. By supporting governance, risk management, and compliance initiatives, the specialist ensures that all information security efforts align with business objectives and regulatory frameworks. This position is instrumental in fostering a secure, resilient, and compliant operational environment in a dynamic fintech context.

What you’ll do:

• Implements, and executes an enterprise-wide security strategy that aligns with business goals and regulatory requirements.
• Oversees the development and management of risk management and compliance programmes to enable proactive identification, assessment, and mitigation of risks to the business.
• Accountable for monitoring the effectiveness of security controls that safeguard the security of the organisation's information assets, systems, data, and technologies;
• Develop, maintain and enforcement of Information Security policies and standards thar are aligned to the organisation's regulatory obligations, strategic goals and security risk objectives.
• Support security incident response efforts, ensuring timely and effective resolution of security incidents and breaches.
• Follow security architecture principles and guardrails to ensure the secure design, implementation, and management of IT services.
• Executes information security assessments and action plan responses (e.g., disaster recovery strategies), to be communicated to Business C-Suite and IT Leadership.
• Support the organisation's Information Security awareness processes.
• Acts as a advisor on information security, risk, and compliance-related topics.
• Ensures the effective management of information security, risk, and compliance talent, including maintaining a clear structure to attract, develop, and retain the best talent in this area.
• Supporting the facilitation and coordination of audit activities including but not limited to interviews, documentation requests, artifact requests, logistical support for walkthroughs / meetings, facilitating follow up queries with various stakeholders and tracking status of all requested items.
• Support business continuity planning efforts to ensure resilience and operational continuity in the face of business disruptions.

This role is perfect for you if you have: 

• Expertise and practical knowledge and understanding of industry security frameworks and guidance such as NIST CSF and DORA
• Good knowledge and understanding of Cyber Security domains, including; network and cloud security, security operations, vulnerability management, Third Party supplier Risk Management, application security, physical security.
• Good problem-solving and communication skills.

Why you should join myPOS:

• Vibrant international team operating in hi-tech environment
• Annual salary reviews, promotions and performance bonuses
• myPOS Academy for upskilling and training
• Unlimited access to courses on LinkedIn Learning
• Refer a friend bonus as we know that working with friends is fun
• Annual individual training and development budget
• Teambuilding, social activities and networks on a multi-national level

What we offer:

• Excellent compensation package
• 25 days annual paid leave (+1 day per year up to 30)
• Full “Luxury” package health insurance including dental care and optical glasses
• Meal vouchers of 200 BGN per month
• Fully covered Multisport card
• Free coffee, snacks and drinks at the office

Who we are:

Since 2014 we’ve been all about making payments easier and more accessible for businesses of all shapes and sizes. Whether you’re at the counter, selling online, or on the move, we’ve got businesses covered with smart, accessible and affordable solutions that keep things easy.

Our mission? It’s simple. Help businesses get paid by taking advantage of modern tech and innovative ideas, so payment challenges are a thing of the past.

Pro tip:

Take it easy about meeting every requirement - this job description is just that, a job description! Even if you don’t tick every box, we want you to apply anyway! This is your chance to grow, learn, and build your career with us. We value potential over perfection, and we are all about mutual growth!

Apply by filling in the form below and send your CV in English!

myPOS is committed to providing equal employment opportunities. All qualified candidates will be considered for employment without discrimination based on age, ancestry, color, marital status, national origin, physical or mental disability, medical condition, veteran status, race, religion, sex, sexual orientation, gender identity or expression, or any other characteristic protected by applicable laws, regulations, and ordinances.

Your application will be confidentially reviewed in line with the General Data Protection Regulation (GDPR). Personal information will be used solely for the job application and will be stored for a period needed by the application process. Only short-listed candidates will be contacted. Good luck!