Senior IT Security Manager

Grow with us! Universal Investment is on its way to becoming Europe's leading fund services platform and Super ManCo. We have provided innovative fund solutions for asset managers and institutional investors since 1968. We are also well established in Germany, Luxembourg, Ireland and Poland. From here and from our offices in Frankfurt, Krakow, Luxembourg, Dublin, Paris and Stockholm, we continue to expand internationally. We are currently looking for entrepreneurial people who want to grow and share in the profits of our success.

Your tasks and responsibilities:

• Oversee Security Operations Center (SOC) activities and incident response procedures
• Support maintaining a SIEM (Security Information and Event Management) systems
• Coordinate vulnerability management programs and remediation efforts
• Maintain and optimize our EDR (Endpoint Detection and Response) solution
• Provide security consulting to internal stakeholders and business units
• Contribute to implementing Zero Trust Architecture principles across the organization
• Facilitate DevSecOps practices and ensure OWASP compliance in development processes
• Maintain Identity and Access Management (IAM) frameworks and policies
• Participate in penetration testing activities and security assessments
• Contribute to developing cloud governance frameworks and maintain secure cloud landing zone architectures
• Support compliance efforts with regulatory standards including DORA, BaFin, and CSSF requirements
• Collaborate with the CISO team to implement and maintain security frameworks based on ISO 27001, NIST, and CIS Benchmarks
• Facilitate security awareness training programs and delivery
• Collaborate with cross-functional teams to integrate security into business processes

Your skills and experience:

• Minimum 10 years of comprehensive cybersecurity experience
• At least 5 years in senior security leadership positions
• Extensive experience leading Security Operations Center (SOC) operations
• Advanced proficiency with XDR systems
• Expert-level knowledge of SIEM platforms
• Deep understanding of Zero Trust Architecture implementation
• Strong background in DevSecOps methodologies and OWASP standards
• Comprehensive experience with Identity and Access Management (IAM) solutions
• Hands-on penetration testing and security assessment experience
• Proven security consulting experience with diverse stakeholders
• Knowledge of cloud security governance and DevOps practices and Scrum methodologies
• Thorough understanding of ISO 27001, NIST Framework, and CIS Benchmarks
• Experience with financial sector regulations: DORA, BaFin, and CSSF compliance
• Project management experience
• Fluency in English. Professional working knowledge of German will be an asset

Certifications Required:

• CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager)
• OSCP (Offensive Security Certified Professional) preferred
• CompTIA CySA+
• Microsoft security certifications (AZ-500, SC-100, AZ-400)
• Network security certifications

What we offer:

• An exciting working environment and challenging tasks
• Extensive insight into the European fund industry
• Friendly, international and goal-oriented working environment
• High degree of independent work
• Food vouchers and other attractive discounts
• Free job ticket
• Home office possibility and time flexibility