Information Security Manager – 2nd line

Specialisms : Technology Risk Jobs | GRC Jobs

• Frankfurt
• Job type : Permanent
• Sector : Banking
• Job reference : 43377

Apply for this job

We’re looking for a Manager-level Information Security Assessor to join the Second Line of Defense , helping to strengthen our internal security audit, assurance, and oversight capabilities. This role plays a key part in challenging first-line control implementation, supporting regulatory readiness, and ensuring alignment with frameworks like DORA, ISO 27001, and BAIT .

What You’ll Do :

Perform independent assessments of information security controls, including within outsourced environments

Lead and evolve our security assurance methodology , audit planning, and reporting practices

Review compliance with internal security policies and external regulatory requirements

Provide challenge and oversight to 1LoD on control effectiveness, remediation, and exception handling

Contribute to senior risk reporting , metrics, and regulatory reviews

What You Bring :

5+ years of experience in Information Security, IT Audit, or Risk , ideally in Financial Services

Solid knowledge of security standards (ISO 27001, NIST, COBIT) and regulatory frameworks (DORA, BAIT, MaRisk)

Strong reporting and stakeholder engagement skills, with the ability to influence across the business

Preferred certifications : CISA, CISSP, CRISC, or ISO 27001 Lead Auditor

Apply for this job Full name Email address Phone (optional) Message Add CV (optional) Upload your CV / resume or any other relevant file. Max. file size : 2 MB. I consent to the storing and processing of my personal data as detailed in Barclay Simpson’s Privacy Policy. Are you human?

We seek individuals from a diverse talent pool and encourage applicants from underrepresented groups to apply to our vacancies. Our commitment to fair recruitment processes means that we welcome applicants from all backgrounds, regardless of their lived experience or personal characteristics. We also invite applicants who meet most of the listed requirements, even if not all, to apply. If you require any adjustments to the application process, please let us know.

Barclay Simpson acts as an Employment Agency for permanent positions and an Employment Business for temporary / contract engagements.

Kieran Green – European Cyber

View my profile Looking to hire?

Other jobs I manage

• Information Security Manager - 2nd line
• Senior Manager - BCM Second Line

Information Security Manager • Frankfurt