Manager Information Security

Manager Information Security  Location: Frankfurt am Main A growing consultancy is seeking a Manager Information Security to support clients across information security, identity and access management, and regulatory compliance initiatives. This role offers the opportunity to lead client engagements and support complex transformation projects within regulated environments. Key Responsibilities: Lead and support client projects across information security and IAM topics. Advise clients on ISMS frameworks, ISO 27001 and regulatory requirements. Support IAM and PAM initiatives including role concepts, recertification and access governance processes. Manage workshops, stakeholder communication and project deliverables. Coordinate workstreams and support the development of junior team members. Contribute to security and compliance initiatives within financial services and regulated environments. Ensure high-quality project delivery and client satisfaction. Your Profile: Several years of professional experience within information security, IAM or cybersecurity consulting. Strong understanding of ISMS frameworks and security governance topics. Experience with regulatory frameworks including DORA, BAIT, VAIT or NIS2 would be advantageous. Knowledge of IAM and PAM concepts and related governance processes. Experience working with banks, insurance companies or regulated industries would be beneficial. Strong communication, moderation and stakeholder management skills. Fluent German and strong English language skills. What’s on Offer? Opportunity to work on complex security and compliance projects. Collaborative and growth-oriented consulting environment. Exposure to regulated industries and strategic client initiatives. Flexible working arrangements. Long-term career and development opportunities.

ICT Risk Manager Location: Prague / Hybrid Our client is seeking an ICT Risk Manager to join a Second Line of Defence function, supporting technology risk governance, oversight and regulatory compliance activities within a regulated environment. Key Responsibilities: Provide independent oversight of ICT, cyber and technology-related risks. Review and challenge risk assessments, controls and remediation activities. Support the development and enhancement of ICT risk frameworks and governance processes. Monitor technology, security, outsourcing and operational resilience risks. Contribute to regulatory compliance and risk reporting activities. Support third-party and vendor risk oversight initiatives. Collaborate with stakeholders across risk, technology, security and business functions. Your Profile: Several years of experience within ICT risk, technology risk, cyber risk or operational risk environments. Understanding of risk governance and Second Line of Defence responsibilities. Experience within banking, financial services or another regulated environment. Knowledge of ICT risk management, operational resilience and regulatory frameworks. Strong analytical, communication and stakeholder management skills. Relevant certifications such as CRISC, CISA or CISSP would be advantageous. Fluent English language skills. What’s on Offer? Opportunity to work within an international and regulated environment. Exposure to technology risk, resilience and governance initiatives. Flexible hybrid working model. Long-term development and progression opportunities.

Director – ICT Risk & Security Reporting Location: Prague / Hybrid Our client is seeking a Director – ICT Risk & Security Reporting to lead technology risk reporting, governance and risk insight activities within a regulated international environment. This role focuses on delivering meaningful reporting, supporting senior decision-making and strengthening risk transparency across the organisation. Key Responsibilities: Lead the development and enhancement of ICT risk and security reporting frameworks. Deliver reporting and risk insights to senior leadership and governance forums. Develop risk metrics, dashboards and management information across technology and cyber risk domains. Identify trends, emerging risks and areas requiring escalation. Support regulatory, audit and governance-related reporting activities. Collaborate with stakeholders across technology, security, risk and compliance functions. Drive improvements in reporting, analytics and data visualisation capabilities. Your Profile: Strong experience within ICT risk, technology risk, cyber risk or information security governance environments. Experience producing executive-level reporting and management information. Understanding of technology risk management and regulatory frameworks. Experience operating within banking, financial services or other regulated environments. Strong analytical, communication and stakeholder management skills. Ability to translate complex technical topics into clear business-focused insights. Relevant certifications such as CISA, CRISC or CISSP would be advantageous. Fluent English language skills. What’s on Offer? Senior leadership role with broad organisational exposure. Opportunity to shape technology risk reporting and governance capabilities. Flexible hybrid working model. Long-term development and progression opportunities.

Senior Manager Information Security - Second Line of Defence Location: Frankfurt / Hybrid Our client is seeking a Senior Manager Information Security to support security governance, risk oversight and regulatory compliance activities within a highly regulated environment. This role sits within the Second Line of Defence and focuses on strengthening information security frameworks, controls and oversight processes across the organisation. Key Responsibilities: Support and oversee information security governance and risk management activities. Provide independent oversight and challenge of security controls and risk practices. Maintain and enhance security policies, standards and governance frameworks. Support risk assessments, control reviews and remediation activities. Collaborate with technology, risk, audit and compliance stakeholders. Monitor regulatory developments, emerging threats and security-related risks. Prepare reporting and presentations for senior stakeholders and governance committees. Contribute to operational resilience and third-party security oversight initiatives. Your Profile: Extensive experience within information security, cyber risk or technology risk environments. Strong background in security governance, risk oversight or Second Line of Defence functions. Understanding of regulatory frameworks and security standards within regulated environments. Knowledge of information security controls, operational resilience and cloud security governance. Strong stakeholder management and communication skills. Relevant certifications such as CISSP, CISM or CRISC would be advantageous. Fluent German and English language skills. What’s on Offer? Senior-level role within a complex and regulated environment. Exposure to security governance and risk management initiatives. Flexible hybrid working model. Long-term development and progression opportunities.