Information Security Officer
Luxembourg
PPRO
Boost your global e-commerce with PPRO. Activate, accept, and manage local payment methods in 85+ markets for enhanced customer trust and growth.Our strength lies in our diverse global team with 50+ nationalities and 10+ international locations- all united around one goal – to deliver the best possible products and services to our partners and customers. While our company mission is to keep innovating global commerce, our internal mission is to #chooseaction, #beopen, #thinkcustomer, #gofurther and #wintogether
The Purpose:
You’ll join a growing GRC team responsible for keeping the company secure and compliant. As anInformation Security Officer, you will play a critical role in ensuring the security of PPRO and ourcustomers, safeguarding our organisation's information assets and ensuring compliance with industrystandards and regulations.
PPRO is a cloud-native FinTech, operating payment services hosted in AWS and GCP. The GRCteam within PPRO acts as a second line of defence, ensuring the management of Security Policies,Risks and Compliance with regulatory requirements.
We provide innovative technology solutions, which means you will work in an exciting and fast-pacedenvironment, driving innovations in how we manage security
Your impact in this role:
- Ensuring the identification and management of security risks by participating in comprehensive risk assessments.
- Contribute to the creation and implementation of pragmatic, effective and efficient security policies, in alignment with business goals and industry best practices.
- Perform oversight to ensure we remain compliant with applicable laws, regulations and standards.
- Foster a culture of security awareness across the organisation, providing training to employees on security best practices, highlighting relevant risks and driving ownership and accountability for business areas’ security activities.
- Participate in the implementation of a robust second line of defence to ensure effective oversight of first line teams.
- Collaborate with technology teams to ensure security is embedded in system designs and implementations.
- Support PPRO’s incident response and resilience plans with Engineering and Compliance teams.
- Participate in both internal and external audits.
- Interact with suppliers and customers to build PPRO’s reputation as a best-in-class secure services provider.
- Foster a culture of ongoing security enhancement.
What would make you a great fit:
- Computer Science Degree and/or an Engineering background are mandatory.
- Proven experience in security management, risk assessment, and compliance, with at least 5 years of experience in a security role.
- Good knowledge of regulatory frameworks (CSSF/EBA, DORA, ISO 27001).
- Professional certifications such as CISSP, CISM, or CISA preferred.
- Excellent written and spoken English skills.
- Strong communication and interpersonal skills, able to communicate across a broad range of stakeholders (technical and executive) and influence outcomes.
- Commitment to diversity and inclusion and the ability to foster an inclusive culture.
- Curiosity, a growth mindset and a commitment to continuous learning and innovation.
Nice-to-haves:
- Good knowledge of industry standards (GDPR, PCI DSS).
- Experience identifying, managing and mitigating security risks in a cloud-native environment.
- Experience managing security in Cloud hosting such as AWS, GCP, Azure.
- Solid understanding of Kubernetes, Networking, Operating Systems.
- Solid understanding of DevSecOps practices and CI/CD security requirements.
- Knowledge of banking/payments, software development and/or FinTechs is appreciated.
Hybrid working - We offer a hybrid structure with a 3 days / week on site expectation, so you can strike the balance between office and home working. In addition to our 30-day holiday allowance, we also provide a work from abroad policy, enabling employees to work remotely for up to another 30 days per year
Lunch Vouchers - 12,80euros x 18 / month - Enjoy a moment of conviviality and a good and balanced meal thanks to your Lunch Pass.
Enhance Family Leave - We understand the importance of family - that's why we offer enhanced family leave to support you during key life moments.
Travel Insurance - because better safe than sorry - the travel insurance is covering (partially with certain excess amounts): Sickness, Costs in relation to rescission/break-off during a travel, Luggage and Accident.
Professional and personal development - We provide leadership cafes, on-the-job training, and access to LinkedIn learning to help you gain knowledge beyond your role. We also offer French language courses to our non native speakers employees.
Gym membership - PPRO helps contribute towards the costs of your gym membership, supporting your physical fitness journey while easing the burden on your wallet
Mental Health Platform - We’ve teamed up with a top well-being platform to provide one-on-one therapy, chat therapy, therapist-led courses, guided meditations, and more.
Our office - Located in Hollerich - two steps away from the Bouillon P+R and easily accessible with public transportations, our office is well equipped and is set up to foster team engagement and collaboration. From a walking distance to restaurants and bars, you are guaranteed to enjoy your lunches and afterworks.
Our Principles:
We get things done: We are courageous; we take ownership, make decisions and get things done.
We act with trust and integrity: We listen first and challenge respectfully. We seek out and leverage diverse perspectives. We welcome and offer honest and open feedback, always assuming positive intent
We put the customer first: We are laser focused on delivering outstanding outcomes for our customers. We put the customer at the heart of what we do.
We make things better: We boldly explore new ideas and have an unwavering commitment to continuous improvement.
We work as a team: We collaborate closely and value team success over individual achievement.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS Azure Banking CI/CD CISA CISM CISSP Cloud Compliance Computer Science DevSecOps FinTech GCP GDPR Incident response ISO 27001 Kubernetes PCI DSS Risk assessment
Perks/benefits: Career development Fitness / gym Home office stipend Lunch / meals
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.