Vice President - ICT Risk Oversight (f/m/d)

CFC S.A. (CFCL) • Luxembourg

Luxembourg

Your career at Deutsche Börse Group

Your area of work:

Clearstream is a large international financial institution offering post-trade infrastructure, securities and fund services for the international and domestic markets worldwide.

The ICT risk management control function plays a pivotal role in safeguarding our organization against technological and information security risks. We partner closely with product, technology, security, and risk teams to ensure the resilience of our systems and services. We actively steer ICT risk governance and framework design, monitor and oversee technology risks, perform focused risk assurance, and enable compliance for legal entities, branches, and representative offices in scope with direct reporting line to the corresponding executive board(s).

Your responsibilities:

We are looking for an experienced responsible person for the Technology Risk Oversight to provide Second Line of Defense services to Clearstream entities and to lead the ICT Risk function of Clearstream Fund Centre S.A.

Responsible for technology and security risk monitoring and accountable for providing independent oversight, including challenge to first line of defense.
Lead a team in charge of developing, implementing, and sustaining a DORA compliant ICT Risk Oversight program in the Second Line for the entities in scope, and by working closely and partnering with Technology Risk Governance, Technology Risk Assurance, and other relevant functions’ teams.
Oversee digital operational resilience posture and advise on technology risk control requirements to support the evolving product, technology, and regulatory landscape. Stay updated with emerging trends and align these to organizational plans.
Actively work with relevant functions across the three lines of defense to gather digital resilience requirements, achieve alignment, and deliver intended outcomes and compliance expectations. More particularly, provide input from a technology risk perspective on key digital transformation initiatives, resilience testing, ICT third party supplier risk, and other key areas.
Advise the product, technology, and security teams to deliver DORA compliant solutions and products. Review, assess, and report on material deviations including the appropriateness of risk control measures.
Contribute to strategic alignment of the digital operational resilience requirements and providing thoughtful insights on resilience posture. Champion recommendations for continuous improvement based on evolving threats, risk appetite, business strategy, and regulations.
Support the preparation of meetings with regulators across multiple business locations and provide support to relevant internal stakeholders. Furthermore, the candidate is expected to periodically interact and communicate with relevant board(s), internal / external auditors, and regulators and therefore, prior experience with executive reporting, regulatory audits, and findings remediation are strongly desired.
Establish sound ICT risk oversight practices. Define, monitor, and report on risk metrics and key performance indicators. Support the preparation and delivery of ICT risk reports to senior management.

Your profile:

7+ years of experience in technology governance, risk, and compliance.
University degree in Computer Science, Technology Risk, Cyber Security, or related field.
Deep understanding of technology and security frameworks, risk management practices, and DORA regulation, also comfortable working cross functionally.
Experience and strong analytical skills understanding, structuring, and explaining complex topics; end-to-end thinking required.
Proven problem-solving competencies and abilities to drive tasks to completion along appropriate level of judgment and maturity.
Comfortable turning incomplete, unstructured, or ambiguous data points into structured outcomes and pragmatic action plans.
Experience working with technology regulations, international standards, or best practices.
Strong communication and Stakeholders’ management skills with the ability to summarize complex information clearly. Capacity to manage priorities simultaneously.
High self-responsibility & ownership; result orientation and customer focus.
Proficiency in written and spoken English, German is a plus.

Why Deutsche Börse Group?

We are committed to providing a work environment where everyone feels welcome and can reach their full potential. Our standards go far beyond simply matching candidates with the right position.

Mobility

We enable you to move freely with our job tickets, job (e-)bikes and free parking opportunities.

Work environment

Collaboration, communication, or deep focus – in our modern office buildings you will find the perfect work environment. Free drinks and food and meal allowances included.

Health and wellbeing

We care for your health and wellbeing and besides various health promotion measures we offer you a group accident insurance and additional insurance offers at discounted rates.

Financial stability

We provide financial stability by offering attractive salaries, company pension schemes, participation in our Group Share Plan, as well as bonuses, subsidies and discounts.

Hybrid work

Collaborate and exchange on-site or work remotely several days a week in line with business needs and local regulations. Our hybrid working model combines the best of both worlds.

Flexible working hours

We want your job to fit your life situation and offer flexible working time models, childcare allowance, or the possibility to study alongside your job.

Internationality

Our market infrastructures are globally connected. Working with us means collaborating with like-minded colleagues across over 60 locations from more than 100 nations.