INFORMATION SECURITY MANAGER (f/m/d)

INFORMATION SECURITY MANAGER (f/m/d)

Permanent employee, Full-time · Frankfurt am Main

Your Role

As Information Security Manager and part of the Security & Privacy Governance team, you will steer our ISO 27001:2022 certified information-security-management system (ISMS), drive compliance with the EU Digital Operational Resilience Act (DORA), and align our controls to international regulations.

Your Responsibilities

Governance & ICT Risk

• ISMS Ownership: maintain and enhance our ISO 27001:2022 ISMS and policy framework.
• DORA Alignment: maintain the act’s requirements on ICT-risk governance, incident reporting and third-party.
• Global Regulatory Mapping: Ensure our control set also meets CFTC System Safeguards for automated trading systems and MAS TRM principles on governance, access control and cloud security.
• ICT-Risk Assessments: Run risk analyses in line with regulations, best practices, Three-Lines-of-Defence model, reporting residual risk to senior management.

Engineering & Operations (First-Line Enablement)

• Security-by-Design Reviews: Advise product teams on secure architecture, zero-trust networking and segregation of duties.
• Control Lifecycle: Define, monitor and improve technical controls (vulnerability management, hardening baselines, privileged access) together with Development, Infrastructure, and SecOps teams.
• Tooling Strategy: Manage, use, and optimise our threat intelligence, security events, intrusion detection, deception, and similar platforms. Ensure coverage, effectiveness, efficiency and automation.

Detection & Response

• Incident Response - manage the NIST-aligned lifecycle (prepare, detect, contain, eradicate, recover, lessons learned) and meet the multi-jurisdiction requirements and timelines set by our regulators and expected by our clients.
• Assess & Improve - use threat intelligence, vulnerability reports, and similar news sources to assess changes in landscape, threats, and best practices, and provide thoughtful, innovative, and practical guidance to improve our processes and systems.
• Table-Top & Purple-Team Drills - coordinate regular exercises to validate controls and drive continuous improvement.

Your Profile

• Experience in the information security, ideally including development and implementation of practical security governance, policies, processes, and standards
• Ability to lead and align on a shared vision
• Ability to prepare/explain security related topics on the appropriate level, also to non-technical people
• Track record of taking responsibility, working independently, and without much supervision
• Highly motivated to learn about new topics, technologies, concepts, and business cases
• University degree or comparable education, or relevant certifications in information security (e.g. CISSP, CRISC, CISM, ISO27001 Implementer / Auditor)
• Highly proficient in spoken and written English (CEF C2 or above, native English is a plus)

Our Offer

• Established and certified security organisation and culture, stable and growing multinational company
• Regular performance appraisals, close interaction with all business functions and management, direct reporting to the CISO/DPO
• Growth, development, and learning opportunities, including our internal „360T Academy“
• Offices located directly in the city center
• Multinational and multicultural environment, social gatherings and activities

The position is based in Frankfurt am Main and vacant immediately.

How to Apply

If your background and qualifications meet these specifications, please forward your application including your salary expectation, earliest starting date by clicking the “Apply” button.

Contact

Irune Del Buey
People & Culture Manager

Send email
Grüneburgweg 16-18
60322 Frankfurt am Main

Apply for this job

About us

360T is one of the globally leading trading platforms for Foreign Exchange (FX). As Deutsche Börse Group’s powerhouse for FX, 360T provides a web-based trading technology for over-the-counter (OTC) instruments, integration solutions and related services. Since its inception in 2000, the company has developed and maintained a state-of-the-art multi-bank portal for foreign exchange, crypto assets, cash and money market products. With over 3,000 Buy-Side customers and more than 200 liquidity providers across 80 different countries, 360T is uniquely positioned to connect the global FX and Crypto industry.
Headquartered in Frankfurt am Main, Germany, 360T maintains subsidiaries in London (360 Trading Networks UK Limited), New York (360 Trading Networks Inc), Singapore (360T Asia Pacific Pte. Ltd.), Mumbai (ThreeSixty Trading Networks (India) Pvt Ltd), Kuala Lumpur (360 Trading Networks Sdn Bhd) and Dubai (360 Trading Networks (DIFC) Limited).
Apply for this job

We are looking forward to hearing from you!

Thank you for your interest in 360T. Please fill out the following short form. Should you have difficulties with the upload of your data, please send an email to careers@360t.com.
Data privacy statement
Uploading document. Please wait.
Send application Please add all mandatory information with a * to send your application.
Cancel