Manager of Security Risk at Grainger overseeing Information Security Risk team and managing security risk programs. Focused on regulatory compliance, leadership, and risk assessment integration.
About the role
- Information Security Officer improving fintech security and compliance. Own ISMS, lead risk management, and coordinate audits to ensure regulatory adherence.
Responsibilities
- Set and maintain security policies and procedures for a fintech environment, keeping them practical and compliant (e.g., ISO 27001/GDPR).
- Run regular risk assessments and audits, fix gaps, and strengthen defenses.
- Embed security into our products and operations by partnering with ICT and business teams.
- Stay ahead of new threats and regulations (e.g., DORA) and turn them into simple, useful controls.
- Build a security-first culture through training and clear guidance.
Requirements
- 3+ years of experience in information security, risk management, or compliance (ideally in SaaS or fintech).
- Solid understanding of ISO 27001 or GDPR frameworks - you know how to apply them in practice, not just theory.
- Experience running risk assessments, managing audits, and coordinating remediation activities.
- Ability to translate security requirements into clear business actions.
- Proactive and organized - you make security work with the business, not against it.
- Team player who collaborates across departments (Engineering, Product, HR, Sales).
Benefits
- Real impact in a growing fintech where security is core to success.
- Continuous learning: access to courses, conferences, and books.
- Team culture: events, sports challenges, regular team-buildings.
- Flexible & remote work: enjoy flexible hours and remote work options.
- Private health insurance and optional 3rd pillar pension contributions.
- Little perks that make a difference: pet-friendly office, snacks, and a lot of ways to take a break - from board to digital.
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
SAP Security GRC Consultant involved in designing and implementing security architectures for Swiss clients. Collaborating with project teams on compliance and security solutions.
Senior Consultant with Wavestone providing SAP Security and IAM solutions in Switzerland. Collaborating on security architectures and supporting clients on SAP security transformations.
Network Security Engineer ensuring secure, highly available enterprise network systems with a focus on collaboration and technical excellence. Involves designing and implementing networking solutions.
Security Manager at Leonardo focusing on cyber compliance and risk management across OT and IT frameworks. Supporting clients in strategic initiatives and infrastructure assessments.
Senior Analyst leading cybersecurity governance initiatives at Elsevier. Developing and maturing governance programs for data protection and risk management across the organization.
Commercial Security Service Sales Executive promoting and selling security services at Johnson Controls. Building relationships and delivering solutions to protect people and property within assigned territories.
Security Incident Responder in a leading IT service company in Germany, responsible for analyzing and responding to IT security incidents while developing technological solutions.
Deputy ISSO leading compliance and security activities for NOAA systems at RCG. Requires active Secret clearance and CISSP certification with 8+ years of experience.
Technical Recruiter hiring for Snap Inc.'s security and machine learning teams. Full life cycle recruiting support for technical talent across Snap's innovations.