Senior Manager of Cybersecurity application and cloud security at Medtronic. Leading teams to enhance security in cloud - native environments and software development.
PC
Hybrid Head of Operational Risk, Information Security
Posted 4 months ago
About the role
- Head of Operational Risk & Information Security at Pliant responsible for compliance with risk management frameworks. Leading a team to enhance operational resilience and information security governance.
Responsibilities
- Lead the development and continuous improvement of Pliant’s Operational Risk and Information Security Frameworks
- Maintain governance, control, and reporting structures aligned with Pliant Oy’s EMI obligations and group-wide needs
- Act as the 2nd Line of Defence lead, providing independent oversight, assurance, and challenge across all entities
- Manage and mentor a team of risk and IT security specialists
- Advise senior management, the Risk Committee, and the Board on operational resilience and ICT/security risk
- Own the enterprise-wide incident management framework covering ICT and non-ICT incidents
- Maintain a consistent incident classification, escalation, and reporting structure across jurisdictions
- Lead post-incident reviews and root cause analyses
- Ensure compliance with major incident notification obligations under PSD2 and DORA
- Maintain and enhance Pliant’s Information Security Management System (ISMS)
- Develop and enforce information security policies and controls that support business goals and regulatory requirements
- Oversee cyber incident detection, analysis, and response
- Coordinate Business Continuity Management (BCM) across the group
- Conduct and maintain Business Impact Analyses (BIAs)
- Oversee the outsourcing and third-party risk management framework in line with EBA Guidelines
- Serve as the primary point of contact for operational risk and information security matters with regulatory bodies
Requirements
- Bachelor’s or Master’s degree in Information Security, Risk Management, Computer Science, or a related discipline
- 5+ years of experience in operational risk, ICT risk, or information security management, ideally within financial services, fintech, or EMI
- Demonstrated experience implementing or managing ISO 27001, SOC 2, and PCI DSS frameworks
- Strong knowledge of EBA, DORA, and PSD2 operational and ICT risk requirements
- Proven ability to lead a small team and engage effectively across Technology, Operations, and Compliance functions
- Excellent communication, stakeholder management, and presentation skills at all levels.
Benefits
- Attractive remuneration
- Flexibility and possibility to work remotely
- Company card with a monthly allowance for lunches, coffee, etc. with co-workers
- Opportunity to develop your talent in a dynamic team with ambitious goals
- Flat hierarchy and transparent communication in a relaxed, professional atmosphere
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Security Engineer designing and implementing secure architecture solutions for Disney's global technology ecosystem. Collaborating with teams to assess threats and secure AI/ML implementations and technologies.
Head of Information Security at Thndr, leading security strategy and governance across Egypt, UAE, and KSA. Responsible for managing risk and building trusted security function.
Security Lead responsible for security across product, cloud infrastructure, and internal systems. Aiming to enhance security measures and practices within a SaaS environment.
(Senior) Security Engineer establishing secure coding practices and driving DevOps automation for Paymenttools, enhancing payment security in Europe.
Senior Machine Learning Engineer developing AI/ML systems to tackle critical National Security challenges. Leading client engagement and delivering robust, production - ready machine learning solutions.
Internal Auditor at Leaseweb responsible for planning audits and assessing IT security frameworks. Collaborating with global teams to enhance security controls and mitigate risks.
Senior Software Engineer building robust full - stack solutions for threat and email security at Hoxhunt. Contributing to comprehensive reporting and threat remediation as part of a collaborative team.
Senior SOC Engineer at Pearson's Security Operations Centre. Leading design, implementation, and optimization of security tooling and infrastructure to enhance detection capabilities.
Information Security Intern supporting infrastructure security initiatives within cloud environments at Inmar Intelligence. Collaboration on automation, system hardening, and secure cloud image development is required.