International business requires an international corporate philosophy. Are you open to new ideas and do you value cultural diversity? At Raiffeisen Bank International, we are pleased to have more than 16 million customers in 13 CEE countries. And our journey continues – with exciting new issues for us to tackle such as digitalisation and changing customer needs. Join us on our journey.
This function is responsible for development and maintenance of the group wide strategic Information & Cyber Security governance program and is one of four teams reporting to the RBI Group CISO.
This function transforms the strategic requirements into processes on group level as well as develops metrics for ongoing performance measurement and reporting.
The Information Security Governance and Organisation Manager leads and participates in the conceptual design and the management of Information & Cyber Security processes and tasks including the definition, tracking of compliance to security regulations, definition and validation of mitigating measures with specific focus on RBIs international units; furthermore, drive the development of group wide security services and contracts with third parties within RBI Group
What you bring to the table:
- Conduct security assessments and compliance checks to identify the effectiveness of controls; validate answers and evidences and assess the derived risk status within RBI Group
- Support local CISOs of RBI international units on the implementation of group security policies/standards/guidelines; advice on effectiveness of treatment plans
- Analyze and evaluate risks of security relevant changes in projects or run-the-bank operations as well as identify vulnerabilities/security risks and draw up proposals for improvements and/or initiate countermeasures
- Establish and maintain group wide security services including cost- contract- and vendor management, reevaluate services and ensure quality and demand
- Support in reporting of KRIs/KPIs to various committees and stakeholders up to C-level executives
- Maintain close relationships with key partners within the business units as well as in the Second Line of Defense units
- Foster a culture that promotes Information & Cyber Security within RBI Group and act as a bridge builder in areas of conflicts
- Research, evaluate and recommend evolving Information & Cyber Security topics
What we offer:
- Expert knowledge and experience in Information & Cyber Security Management with regards to processes, concepts, methodologies, technologies and products
- Have a master’s degree in security/engineering, computer science or business information systems or adequate practical experience
- Knowledge of principles used to manage risks related to the use, processing, storage, and transmission of information or data
- Experience with security architecture concepts including topologies, protocols, components, and principles (e.g. application of defense-in-depth)
- Practical experience in IT security in large complex enterprises
- Knowledge of incident response methodologies
- Knowledge and experience in project management principles and techniques
- Knowledge and interest in new and emerging IT and cybersecurity technologies
- Strong coordination and excellent communication and presentation skills within an international environment
- Ability for independent decision-making and issue resolution
- Strong team orientation
- Excellent command of written and spoken English; German or Eastern European/Russian languages are an asset
- Vendor independent security certifications (e.g. CISA, CRISC, CISSP, CEH) are an asset
- Experience in a large international banking environment is an asset
- Join our dynamic and highly motivated team in one of the leading banking groups in Austria and Central and Eastern Europe
- EUR 46.500,- annual gross salary incl. overtime – additional payment according to skills and experience
- Work-Life balance due to variable working hours
- State of the art learning and development opportunities
RBI AG is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ethnicity, race or color, national origin, religion, political or other opinion, gender, sexual orientation or disability.