Senior Security Engineer managing the vulnerability management program and collaborating with engineering teams at Causaly. Focused on cloud security and secure coding practices.
About the role
- Information Security Manager responsible for security governance and risk management. Engaging with technical teams for compliance with security standards and best practices.
Responsibilities
- Own and continuously improve our ISMS, policies, and security governance lifecycle.
- Act as a trusted advisor to engineering, product, compliance, and customer‑facing teams.
- Lead security risk assessments, maintain the risk register, and drive quarterly risk cycles.
- Ensure operational compliance with ISO 27001:2022, CROE, GDPR, and customer security requirements and support hands-on with configuration tasks.
- Coordinate external audits and assessments, ensuring evidence readiness and smooth execution.
- Lead vendor risk programs that strengthen our supply chain resilience.
- Review product and architectural changes for governance alignment and secure design.
- Collaborate with the Security Architect to connect governance with DevSecOps and cloud practices.
Requirements
- At least 3 years in information security, risk, audit, or compliance, ideally in regulated environments (FinTech, banking, payments, SaaS).
- Strong understanding of ISO 27001, risk methodologies, and modern security frameworks.
- Solid knowledge of security controls (IAM, third‑party risk, secure SDLC, cloud).
- Ability to challenge and support engineering teams constructively.
- Excellent analytical, documentation, and problem‑solving skills.
- Fluent English; German or Spanish is a plus.
- Nice to Have ISO 27001 Lead Implementer/Auditor, CISM, CISSP, CRISC, CCSP.
Benefits
- Culture and diversity : Join a people-oriented environment with different nationalities and a great team spirit, flat hierarchies (everyone speaks to everyone).
- Equal Opportunity Employer and LGBT+ friendly.
- Team: An opportunity to shape our engineering culture and work with a passionate, mission-driven team.
- Collaboration with a diverse and very international team of outstanding people.
- Global Collaboration : Work collaboratively with stakeholders around the globe.
- Impactful Work: You will have the opportunity to participate in and shape a global lighthouse project in the domain of digital currencies.
- Career Development: Benefit from continuous training, coaching, and talent development programs.
- Social Benefits: Flexible compensation (transport tickets, training, private insurance), etc.
- Own canteen : Take a break with our breakfast and lunch service: choose between a wide range of menus, salad desk, and sandwiches service. Nicely priced!
- Work-Life Balance : Flexible working hours with the option for remote work (Mon–Thu 8:30 – 17:30 and Fri 8:30 – 15:30; 3 days of remote work).
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Compliance Specialist managing documentation and policies for Orro's Information Security Management System. Supporting essential compliance activities across ISO 27001 and IRAP with strong attention to detail.
Infra Security Engineer focusing on endpoint security solutions in South Korea's urban mobility services. Collaborating on security architecture and threat detection initiatives.
Senior Cyber Security Consultant supporting client cybersecurity development initiatives. Job focuses on administrative and technical aspects of cybersecurity within a collaborative consulting team setting.
Assistant Vice President providing cybersecurity advisory across enterprise infrastructure at State Street. Supporting technology outcomes in secure and resilient ways across cloud, hybrid, and on - prem environments.
Vice President of Infrastructure Security overseeing enterprise - level cyber risk across platforms. Partnering with infrastructure and technology leaders to ensure secure, resilient, and compliant services.
Security & Resiliency Consultant at Kyndryl analyzing and resolving cybersecurity challenges for clients in a collaborative environment. Engaging in business development conversations and implementing security measures to protect systems.
Infrastructure Specialist managing IT projects, analyzing problems and providing solutions across various platforms. Collaborating closely with teams throughout project lifespans to ensure successful outcomes.
Cybersecurity Engineer ensuring safe operating environments for CACI users by protecting network boundaries and providing security services. Collaborating with stakeholders and conducting security assessments.
Cybersecurity Sales Specialist driving transformational security outcomes for Fortune 250 accounts. Influencing C - suite leaders and closing large multi - region deals.