Information Security Analyst

PPRO is a fintech company that provides digital payment solutions to businesses and banks so that they can scale their local payment services through one connection. Stripe and PayPal are just some of the names that work with PPRO to boost their conversions and eliminate the complexities of local payments.
Since 2006, PPRO has fostered an open working environment where every idea is valued, and continuous improvement is encouraged. Our diverse global team, representing over 50 nationalities across 11 international locations, is united by a single goal to deliver the best products and services to our partners and customers.
Join us and help shape the future of payments.
The Purpose:
You’ll join a growing GRC team responsible for keeping the company secure and compliant. As an Information Security Officer, you will play a critical role in ensuring the security of PPRO and our customers, safeguarding our organisation's information assets and ensuring compliance with industry standards and regulations.
PPRO is a cloud-native FinTech, operating payment services hosted in AWS and GCP. The GRC team within PPRO acts as a second line of defence, ensuring the management of Security Policies, Risks and Compliance with regulatory requirements.
We provide innovative technology solutions, which means you will work in an exciting and fast-paced environment, driving innovations in how we manage security

We get things done / We make things better

• Ensuring the identification and management of security risks by participating in comprehensive risk assessments.
• Contribute to the creation and implementation of pragmatic, effective and efficient security policies, in alignment with business goals and industry best practices.
• Perform oversight to ensure we remain compliant with applicable laws, regulations and standards.
• Foster a culture of security awareness across the organisation, providing training to employees on security best practices, highlighting relevant risks and driving ownership and accountability for business areas’ security activities.
• Participate in the implementation of a robust second line of defence to ensure effective oversight of first line teams.

We act with trust and integrity / We work as a team

• Collaborate with technology teams to ensure security is embedded in system designs and implementations.
• Support PPRO’s incident response and resilience plans with Engineering and Compliance teams.

We put the customer first

• Participate in both internal and external audits.
• Interact with suppliers and customers to build PPRO’s reputation as a best-in-class secure services provider.
• Foster a culture of ongoing security enhancement. 

You’ll need to have

• Proven experience in security management, risk assessment, and compliance, with at least 3 years of experience in a security role. 
• Good knowledge of regulatory frameworks (CSSF/EBA, DORA, FCA, GDPR).
• Excellent written and spoken English skills.
• Commitment to diversity and inclusion and the ability to foster an inclusive culture.
• Curiosity, a growth mindset and a commitment to continuous learning and innovation.
• Strong communication and interpersonal skills, able to communicate across a broad range of stakeholders (technical and executive) and influence outcomes.

Nice-to-haves

• Good knowledge of industry standards (PCI DSS, ISO 27001, SOC2).
• Experience identifying, managing and mitigating security risks in a cloud-native environment.
• Professional certifications such as CISSP, CISM, or CISA preferred.
• Experience managing security in Cloud hosting such as AWS, GCP, Azure.
• Solid understanding of Kubernetes, Networking, Operating Systems.
• Solid understanding of DevSecOps practices and CI/CD security requirements.
• Knowledge of banking/payments, software development and/or FinTechs is appreciated. 

What's in it for you?:
Hybrid working - We offer a hybrid structure with a 3 days / week on site expectation, so you can strike the balance between office and home working. In addition to our 30-day holiday allowance, we also provide a work from abroad policy, enabling employees to work remotely for up to another 30 days per year.
Insurance - Because better safe than sorry - we want our employees to benefit from various insurances including accident insurance, disability insurance, direct insurance (bAV) and travel insurance. 
Gym membership - PPRO helps contribute towards the costs of your gym membership, supporting your physical fitness journey while easing the burden on your wallet
Professional and personal development - We provide leadership cafes, on-the-job training, and access to LinkedIn learning to help you gain knowledge beyond your role. We also offer German language courses to our non native speakers employees.
Mental Health Platform - We’ve teamed up with a top well-being platform to provide one-on-one therapy, chat therapy, therapist-led courses, guided meditations, and more.

Our Principles: 
We get things done: We are courageous; we take ownership, make decisions and get things done.
We act with trust and integrity: We listen first and challenge respectfully. We seek out and leverage diverse perspectives. We welcome and offer honest and open feedback, always assuming positive intent
We put the customer first: We are laser focused on delivering outstanding outcomes for our customers. We put the customer at the heart of what we do.
We make things better: We boldly explore  new ideas and have an unwavering commitment to continuous improvement.
We work as a team: We collaborate closely and value team success over individual achievement.