Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
About the role
- Dynamic Head of GRC leading global governance, risk, and compliance at PPRO. Transforming security frameworks for cloud-native payment operations across multiple regions.
Responsibilities
- Lead PPRO’s global Security GRC strategy and team, to support our international regulatory and compliance footprint
- Oversee and enhance our ISO27001:2022 and PCI DSS v4.0 programmes, building a culture of continuous compliance through automation and control transformation.
- Partner with relevant functions to ensure ongoing DORA compliance, including security risk management, incident reporting, operational resilience testing and governance
- Define and deliver a strategy for a pragmatic, high-value 2nd line automated control assurance programme, underpinned by relevant business metrics
- Own and manage regulatory expectations on security topics by the CSSF in Luxembourg, FCA in the UK and other international bodies as relevant
- Maintain and enhance PPRO’s security risk register, defining and delivering cross-organisation improvement and remediation roadmaps
- Lead security control testing, issue management, KRI monitoring, SLA reporting and Board-level reporting
- Act as Information Security Officer for PPRO’s local Luxembourg entity.
- Own third party security risk management and oversight for PPRO across the full procurement lifecycle
- Partner closely with Engineering to build shared understanding and transform controls via thoughtful automation, streamlining evidence collection and control monitoring
- Act as the primary face to external auditors, regulatory examiners and major enterprise customers
- Manage internal and external audits end-to-end, ensuring preparation, evidence readiness and smooth execution
- Continually refine PPRO’s “always audit-ready” operating model.
- Coach colleagues across Product, Engineering and business functions on regulatory expectations and risk-informed decision-making
- Operate as a trusted partner to leadership teams, bringing pragmatic recommendations and crisp communication
Requirements
- A proven track record transforming traditional GRC frameworks (ISO27001, PCI DSS, SOC2) into modern, automated, developer-friendly control assurance programmes.
- Solid grounding in financial services regulation, payments, operational resilience, outsourcing/cloud guidelines etc.
- Strong experience interacting with regulators and auditors (CSSF, FCA, etc.) and implementing regulatory requirements.
- Proven ability to run risk management processes, control frameworks and audit cycles.
- Experience evaluating technology, cyber and operational risks in a cloud-native environment.
- Engineering-first mindset, with an understanding of cloud-native architectures (AWS preferred) and how GRC requirements fit into engineering workflows.
- Experience with GRC tooling, workflow automation or process optimisation.
- Ability to translate regulatory requirements into practical, technical control expectations.
- Excellent communicator, capable of influencing executives, engineers, auditors and regulators.
- Pragmatic, commercially-minded, empathetic and customer-focused.
- Deeply collaborative, comfortable and effective operating in a fast-paced, ambiguous environment
Benefits
- Hybrid working - We offer a hybrid structure with a 3 days / week on site expectation, so you can strike the balance between office and home working. In addition to our 30-day holiday allowance, we also provide a work from abroad policy, enabling employees to work remotely for up to another 30 days per year
- Learning and Development - We offer a €1,000 annual budget to support your professional growth—because investing in your development benefits us all. In addition, we provide leadership cafés, on-the-job training, and other opportunities to help you grow your skills and thrive in your role.
- Lunch Vouchers - 12,80euros x 18 / month - Enjoy a moment of conviviality and a good and balanced meal thanks to your Lunch Pass.
- Enhance Family Leave - We understand the importance of family - that's why we offer enhanced family leave to support you during key life moments.
- Travel Insurance - because better safe than sorry - the travel insurance is covering (partially with certain excess amounts): Sickness, Costs in relation to rescission/break-off during a travel, Luggage and Accident.
- Gym membership - PPRO helps contribute towards the costs of your gym membership, supporting your physical fitness journey while easing the burden on your wallet
- Mental Health Platform - We’ve teamed up with a top well-being platform to provide one-on-one therapy, chat therapy, therapist-led courses, guided meditations, and more.
- Pet-friendly office - Because work is better with your paw-tners by your side
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.