Manager – Risk, Governance & Information Security

At HI Partners, I am currently supporting a regulated and innovative financial services environment in Luxembourg.

I am looking for a senior Risk and Information Security professional who enjoys building, structuring and owning governance frameworks in a fast-evolving and international setting.

This role sits close to executive leadership and offers strong visibility across the organisation.

Your Role

You will take ownership of the company’s risk management, internal control and information security governance framework and play a key role in ensuring the organisation operates in a sound, secure and compliant manner.

This position combines strategic oversight and hands-on execution. The environment is agile, so the ideal candidate is comfortable structuring frameworks while remaining operational when needed.

Your responsibilities will include:

• Designing and continuously improving the enterprise risk management framework
• Defining risk appetite, risk assessments and risk monitoring processes
• Preparing risk reporting for senior management and Board level stakeholders
• Strengthening and formalising the internal control environment
• Overseeing outsourcing and third-party risk governance
• Driving ICT risk and information security governance across the organisation
• Supporting the implementation of DORA and other EU regulatory requirements
• Overseeing incident management, security monitoring and vulnerability follow-up
• Working closely with IT teams and external service providers on security topics
• Acting as a key partner to senior management on governance and risk matters
• Coordinating with Compliance and other internal stakeholders
• Supporting regulatory interactions, audits and governance initiatives

Your Profile

• University degree in Risk, Finance, Accounting, Law, IT or a related field
• Professional certification in Risk, Security or Governance is a plus
• 5+ years of experience in Risk, Internal Control, Compliance or Information Security within a regulated financial institution
• Strong understanding of risk management frameworks and governance structures
• Good knowledge of ICT risk and information security
• Familiarity with DORA and European regulatory expectations
• Experience working with auditors and regulators is a strong advantage
• Ability to work autonomously and take ownership in a lean environment
• Comfortable interacting with senior stakeholders and leadership teams
• Fluent English is mandatory. Additional European languages are considered a plus.
• This role is ideal for a professional who enjoys building, structuring and having real impact rather than working in a large, highly segmented team.

Important Note

Candidates must hold a valid EU passport or a work permit for Luxembourg.

Applications from candidates who do not meet these requirements will be automatically excluded from the selection process.

How to Apply

If you are ready to take the next step in your career and meet the qualifications listed above, we would be pleased to hear from you.

Apply directly via this job post or

Send your CV to [email protected]

All personal information shared during the application process will be handled with strict confidentiality in accordance with applicable data protection laws.