Logo Bitpanda GmbH

Director, Information Security

Bitpanda GmbH

Job

  • Level
    Lead
  • Job Feld
    IT, DevOps, Security
  • Anstellung
    Vollzeit
  • Vertragsart
    Unbefristetes Dienstverhältnis
  • Ort
    Wien
  • Arbeitsmodell
    Hybrid, Onsite

    • Job Zusammenfassung

    In dieser Rolle bist du verantwortlich für die Entwicklung und Umsetzung einer umfassenden Informationssicherheitsstrategie, leitest ein Team und sorgst für kontinuierliche Auditbereitschaft in einem regulierten Umfeld.

    Job Technologien

    Deine Rolle im Team

    • As a Director, Information Security your mission will be to ensure the protection, integrity, and confidentiality of our organisation's information assets.
    • You will manage and grow our GRC function in a regulated fintech environment.
    • You'll lead a small team (e.g., Associates to Senior Specialists), own the GRC operating rhythm (risk, controls, audits, third-party oversight), and ensure we stay continuously audit-ready while scaling responsibly.
    • This is a hands-on leadership role: you will set direction, coach and develop the team, and partner with senior stakeholders across Technical Operations, Engineering, IT, Compliance, Risk, Legal, and Procurement to drive effective, proportionate security governance.
    • Define and maintain the multi-year information security strategy and roadmap aligned with business objectives, risk appetite, and regulatory requirements.
    • Establish security governance: decision forums, risk acceptance thresholds, exception processes, and clear accountability across the organization.
    • Ensure effective enterprise security risk management, including identification of material risks, treatment plans, and board-level reporting.
    • Lead, scale and oversee security capabilities across domains (GRC/ISMS, Security Operations, AppSec, Cloud/Infrastructure Security, IAM, Security Architecture).
    • Ensure security is embedded into product and engineering delivery (secure SDLC, threat modeling, security-by-design guardrails).
    • Define security standards, controls and minimum baselines; drive consistent implementation across entities, regions, and critical systems.
    • Oversee external and internal assurance programs (e.g., ISO 27001, SOC 2, PCI DSS, partner assurance) and ensure continuous audit readiness.
    • Lead/coordinate security-facing regulatory engagement: examinations, requests for information, remediation commitments, and follow-ups.
    • Ensure security requirements are integrated with broader compliance obligations and operational resilience expectations.
    • Set third-party security strategy for critical suppliers (due diligence, ongoing monitoring, contractual security requirements, and exit/continuity considerations).
    • Ensure oversight of outsourcing/critical ICT providers consistent with regulatory expectations and business criticality.
    • Act as an advisor at all levels: communicate security risk in business terms and drive alignment on tradeoffs.
    • Partner with Engineering, Product, IT, Compliance, Risk, Legal, Procurement, and Internal Audit to deliver outcomes.
    • Champion security awareness and accountability across the company.

    Unsere Erwartungen an dich

    Qualifikationen

    • Demonstrated success building and scaling security programs in regulated environments (fintech/financial services preferred).
    • Strong grasp of security governance and risk management, plus practical understanding of modern cloud/security architecture and engineering practices.
    • Excellent executive and technical communication: able to brief board/executive audiences and represent the company externally, as well as being able to discuss technical requirements and implementations with the First Line of Defence (1LoD).

    Erfahrung

    • Typically 10-15+ years in information security, including leadership of multiple security domains and senior stakeholder management.
    • Experience in implementing ICT related regulatory frameworks (e.g. DORA, BaFin).
    • Proven experience with incident leadership and crisis management.
    • Extensive experience with assurance and frameworks (e.g., ISO 27001, SOC 2, NIST), including translating requirements into operating programs.

    Unser Angebot

    • Flexibility to work where you thrive - Enjoy the freedom of our Hybrid working model, combining onsite collaboration and remote work, with an additional 25 days per year to work from a city or country of your choice.
    • Receive a competitive total compensation package aligned with Bitpanda's pay-for-impact policy, including participation in our stock option plan.
    • Access confidential coaching, counselling, and mental health resources whenever you need them through OpenUP.
    • Take extra time off to rest, reset, and recharge, with 3 additional days off in 2026 to prioritise your wellbeing.
    • Grow your skills and stay ahead in your career with unlimited access to Udemy's library of online courses at your own pace.
    • Enjoy discounts, rewards, and perks from partners worldwide across lifestyle, wellness, tech, and travel.
    • Take advantage of our additional 8 weeks of gender-neutral new parent leave to welcome and bond with your new addition to the family.
    • Set up your home office exactly how you want it with a dedicated budget for comfort and productivity.
    • Pandas in Vienna, Bucharest, Barcelona, and Berlin can enjoy free onsite dining, with freshly prepared lunches and snacks to keep you fuelled and focused all day long.
    • Celebrate milestones and achievements with recognition and rewards for your Tenure at Bitpanda.
    • Access exclusive Bitpanda-branded merchandise and gear to represent.
    • Join unforgettable company events, from our Winter Party in Vienna to summer gatherings worldwide, fostering fun, connection, and celebration.

    Benefits

    Gesundheit, Fitness & Fun

    Essen & Trinken

    Work-Life-Integration

    Mehr Netto

    Themen mit denen du dich im Job beschäftigst

    Job Standorte

    Map of company locations

    • Standort Wien

      Österreich

    Das ist dein Arbeitgeber

    Bitpanda GmbH

    Bitpanda GmbH

    Wien

    Bei Bitpanda glauben wir an die innovative Kraft von Kryptowährungen, digitalen Assets und der Blockchain-Technologie. Unsere Mission ist es, die Barriere für den Zugang zu finanziellen Mitteln abzubauen und herkömmliche Finanzprodukte ins 21. Jahrhundert zu übertragen. Durch unseren einzigartigen Ansatz haben wir bereits 1,2 Million Nutzer gewonnen und unser Team besteht aus mehr als 270 Experten aus 44 verschiedensten Ländern.

    Description

  • Unternehmensgröße
    250+ Employees
  • Gründungsjahr
    2014
  • Sprachen
    Englisch
  • Unternehmenstyp
    Startup
  • Arbeitsmodell
    Full Remote, Hybrid, Onsite
  • Branche
    Banken, Finanz, Versicherung, Internet, IT, Telekom

    • Dev Reviews

    by devworkplaces.com

    Gesamt

    (1 Bewertung)
    3.2

    • Career Growth

      3.2

    • Culture

      3.7

    • Workingconditions

      3.6

    • Engineering

      2.6
    Alle Dev Reviews anzeigen
    Logo Bitpanda GmbH

    Director, Information Security

    Bitpanda GmbH
    Ort
    Wien
    Arbeitsmodell
    Hybrid, Onsite
    Diversität
    Für alle Personen geeignet (m/w/d)
    Nur Englisch
    Nur Englisch erforderlich

    Weitere Jobs