JOB DETAILS

We are currently expanding our team and are looking for an Information Security Manager within Governance, Risk and Compliance (GRC) area who will help SEB to stay ahead of the constantly evolving cyber threat landscape. You will be a part of a SEB Baltic IT & Information

Security, accountable for Cybersecurity in SEB Baltic environment and protecting the interests of SEB Corporate & Private customers while maintaining the highest level of service.

As a senior expert (non-people management) position, you will be responsible for project delivery, design processes, and act as a subject matter expert.

• Lead the improvements of the Information Security Management System (ISMS), ensuring it scales with organizational growth and the evolving threat landscape.

• Design and implement processes for identifying and treating ICT Risks in strict alignment with Non-Functional Requirements (NFR) and ICT frameworks.

• Perform security risk assessments for business and technology initiatives, ensuring security standards are met.

• Oversee the third-party assurance framework ensuring third-party vendors comply with security policies and requirements.

• Translate complex regulations (GDPR, DORA, NIS2) into actionable internal control sets. Respond to enquiries from regulatory bodies and audit institutions.

• Participate during security incidents, specifically managing the regulatory and data protection implications of Data Breaches and Third-Party incidents.

• Participate in security awareness and training programs for both employees and third parties to foster a risk-aware culture.

• Developing and presenting high-level security posture dashboards, risk heatmaps, and compliance roadmaps to stakeholders.

,

• At least 5+ years of experience in the Information Security field, with a specialized focus on the GRC domain.

• Experience in designing and implementing security processes and frameworks, rather than just maintaining them.

• Ability to lead and manage large-scale security initiatives and complex projects from conception to completion.

• Ability to translate technical cyber risks into business impact for high-level stakeholders.

• Experience in navigating regulatory and legal complexities.

• Good communication and teamwork skills.

• Ability to work well under minimal supervision.

• Have a strong drive for improvements.

• Professional information security certifications.

• Fluency in English and at least one of local Baltic language (Latvian, Lithuanian or Estonian), with excellent verbal and written communication skills.

,

• Interesting and challenging work in highly professional international team.

• Friendly and welcoming culture.

• Hybrid way of working.

• Extensive opportunities for professional development.

• Attractive compensation and benefits.

• Challenging, cutting-edge work.

Are you interested in this position?

Apply by clicking on the “Apply Now” Button below!
#JobsHubEstonia #GlobalRecrument
#CareerOpportunities #HiringNow
#JobSeekersNetwork #EstoniaJobs
#RecruitmentServices #EmploymentPortal