Information Security & Risk Expert

We?re on a mission to transform freelance finance. Freelancers are pioneering the future of work. They are global, digital, and flexible - and the tools they use should be, too. Fairo was built to help hardworking freelancers get rid of their most tedious (and unpaid!) work, so they can pursue their passion, be more efficient, and live happier.

Believe us, we?ve been there. The unfriendly, complicated invoice templates. The confusing tax form and the missed deadlines. The bookkeeping mistakes that cost us hours of time to fix - not to mention the stress and sleepless night.

Like most freelance workers, we hated everything to do with tedious administrative work - invoicing, account, and tax reporting. And it got us thinking - why is this still so hard and time-consuming?

That's why we made Fairo. (Powered by Raiffeisen Bank)

And now we are looking for an Information Security & Risk manager.

Responsibilities:

• Overall responsible for information security management system

• Definition and management of security policies in the company

• Analyze security risks and ensure the required information security

• Planning, implementation, testing, monitoring and improving information security and assistive technologies

• Overall responsible for Security incident management and participation on security incident investigation

• IT security at the organizational level - guidelines, procedural, technical and physical

• Management of external audits

• Responsible for implementation of all applicable Raiffeisen Bank International (RBI) Information security requirements

• Maintain relationships with key partners from RBI and other RBI subsidiaries

• Assist IT teams in understanding and responding to security findings reported by internal and external audits

What are we looking for:

• Experience in a similar information security management role

• Working experience within in a fast-paced banking environment

• Experience in compliance and regulatory requirements

• Analytical skills and the ability to apply these skills to problem solving and complex issues

• Ability to organise and prioritise workloads whilst undertaking a wide range of tasks

• Experience evaluating compliance to policy, standards and procedures

• Ability to produce and present reports which summarises information for a senior level

• English language proficiency

• Vendor independent security certifications (e.g. CISA, CRISC, CISSP, CEH, ...) are an asset

• Experience with the implementation of ISO-27001 compliant ISMS is an asset

If you are interested to join us, please send us few words about you and your Resume or Linkedin profile in English and Ukrainian.

We're excited to hear from you!