(Senior)IT Risk Specialist

Grow with us! Universal Investment is on its way to becoming Europe's leading fund services platform and Super ManCo. We have provided innovative fund solutions for asset managers and institutional investors since 1968. We are also well established in Germany, Luxembourg, Ireland and Poland. From our offices in Frankfurt, Krakow, Luxembourg, Dublin, Paris and Stockholm, we continue to expand internationally. We are currently looking for entrepreneurial people who want to grow and share in the profits of our success.

You will support the management of information security risks across technology and business initiatives. You will work independently on defined tasks while collaborating closely with senior specialists, IT teams, and business stakeholders. This role suits a professional who already has hands-on experience in information security risk management and is ready to take more ownership while continuing to develop expertise.

Your tasks and responsibilities:

• Translate information security and risk concepts into clear, business-oriented language for technical and non-technical stakeholders.
• Support verification of control design and implementation against defined security requirements.
• Identify and document non-functional requirements related to security, resilience, and privacy for technology solutions.
• Review solution designs and proposed changes to ensure alignment with security principles, internal standards, and regulatory expectations.
• Conduct reviews and assessments of technical and process controls to evaluate their effectiveness.
• Contribute to preparation of documentation and evidence for audits and internal reviews.
• Act as a point of contact for stakeholders seeking guidance on secure design and risk mitigation practices.

Your skills and experience:

• Minimum 3-5 years of experience in IT Risk, Security or similar functions
• Practical experience working with Technology / IT teams in a risk, security, or governance context.
• Good knowledge of information security standards such as ISO 27000
• Awareness of regulatory frameworks such as GDPR or DORA (practical exposure is an advantage).
• Comfortable engaging with technology topics
• Strong analytical skills with the ability to communicate effectively with diverse stakeholders.
• Proactive, open-minded, and willing to continuously develop security expertise.
• High integrity and a strong sense of responsibility.
• Fluency in English; German is a plus.

What we offer:

• Private health care and travel insurance
• Life insurance
• Cafeteria Platform and sports package
• Company Pension Benefits – Employee Savings Plan
• Attractive Employee Referral Bonus Program
• Additional day off for charity
• Holiday subsidy („wczasy pod gruszą”)
• Hybrid working model