This website uses cookies to ensure you get the best experience on our website.

We and selected partners use cookies or similar technologies to ensure you get the best experience on the Teamtailor website. With respect to cookies that are not considered necessary (as specified in the Cookie Policy), we and our selected partners may use cookies for the following purposes: personalized website experience, develop and improve products and in some cases targeted advertisement that are based on your interests. You can manage or disable cookies by clicking on "Manage cookies" at the bottom of each website page.

Select which cookies you accept

When you visit this website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the website work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Below is a list of different categories of cookies that may be set and that you can freely change. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

These cookies are required and must be accepted to use this site.

Vendors Teamtailor

These cookies collect data about how visitors use this website.

Vendors Teamtailor

These cookies allow the website to remember choices you make and provide enhanced, more personal features.

These cookies are used to deliver adverts more relevant to you and your interests.
Upvest career site
Security and TechOps · Berlin · Hybrid Remote

IT Governance, Risk and Compliance Analyst (f/m/d)

We are hiring here at Upvest come and join the growing team!

We’re looking for fintech enthusiasts to join us in creating the financial infrastructure of tomorrow. We’re building the first European Investment API to enable any financial institution to offer a broad range of investment products in their apps. Our view is backed by Europe's largest tech VCs (Earlybird, Notion Capital, Partech, HV Capital, ABN AMRO Ventures) by renowned fintech entrepreneurs (including Maximilian Tayenthal, founder of N26, and Felix Haas, founder of IDnow) and Bessemer Venture Partners in the USA.

We’re based in Berlin but would consider hiring remotely for this role. If you do want to move to Berlin though, we’re happy to support your relocation.

At Upvest, our vision is to make investing as easy as spending money. By enabling any business to offer investment opportunities, our goal is to empower anyone to invest. Today, we count 100+ talented people from 30 different countries.

Your mission:

As an IT GRC (Governance, Risk, and Compliance) Analyst, you will be excelling in Upvest’s security program to maintain trust with clients, stakeholders, and employees by ensuring that the systems and processes relating to security and IT risk are world-class. You are a central contact person for questions concerning IT Risk and IT Compliance and will focus on taking over vital parts of our Information Security Management System (ISMS) - from risk analysis to implementation, monitoring, and control of adopted measures. This role combines the methodological work of IT GRC as well as operational assurance tasks.

This role will give you the opportunity to:

  • IT Governance | Support and further development of the ISMS including the creation and implementation of policies, standards, guidelines, and procedures in cooperation with the respective process owners.
  • IT Risk Management | Support and further development of the IT Risk & Business Continuity methodology. Conducting third-party and internal risk and continuity assessments.
  • IT Compliance Management | Definition and implementation of baseline controls. Continuous ISMS maturity assessment based on ISO 27001/2022, as well as SOC2.
  • IT Audit Management | Support in the coordination of the IT General Controls and Application Controls Audit. Conducting preliminary IT Audits to prepare the IT teams. Planning, execution, and reporting of IT Security audit as 2nd Line of Defence audit.

    Job requirements:

    • You have a University degree in the field of Computer Science, Information Technology/Security, or equivalent work experience in the area of IT GRC/IT Security.
    • You have a strong knowledge of IT Governance, Risk, Compliance, and Audit Systems, with an experience of 3-5 years.
    • You have excellent communication skills, written and oral, in English with the ability to engage with a multilingual international stakeholder base and teams at various levels (Sr. Management to C level).
    • You can prove your knowledge through recognized certifications such as CISSP, Security+, CISM, CISA, ISO/IEC 27001 Lead Implementer, etc.

      Why Upvest?

      • We're working on solving a hard problem: fixing the European securities financial infrastructure that empowers more people to be able to invest. You have the opportunity to contribute to this change.
      • We invest in you. From access to a personal coach, development budget and plenty of opportunities to grow in your role.
      • We take hiring seriously with a strong focus on keeping a high bar when interviewing (equally important is that we hire decent people, who are passionate about their craft and helping us achieve our shared mission).
      • While we're not quite fully-remote, we are committed to being a flexible employer, as we understand you don't have to be in the office to do your best work.
      • We live in a culture of empowerment, trust (that we hire the best people and get out of their way) and openness (there's a greater advantage in sharing information than keeping it to ourselves).

      Our values:

      • Learn and grow. We aim high to shape our future. We give and request honest feedback knowing that we develop together. Progression over Perfection.
      • Team first. We make it easy for others. We value our differences and are open to others' opinions. We win and celebrate together! Team over Egos.
      • Own the outcome. Whether we win or we lose, we stand together. We are proactive and get the job done. Outcome over Process.
      • Tell the story. We always start with the why. We share knowledge to empower others. Transparency over Complexity.
      Team
      Security and TechOps
      Locations
      Berlin
      Remote status
      Hybrid Remote
      Picture of Diana Kryshevych
      Contact Diana Kryshevych Talent Acquisition Partner – People

      About Upvest

      We’re building the first European Investment API to enable any financial institution to offer a broad range of investment products in their apps. We are backed by the most internationally recognized VCs (Bessemer Venture Partners, Earlybird, Notion Capital, Partech, HV Capital, Speedinvest, ABN AMRO Ventures) and by renowned fintech entrepreneurs (including Maximilian Tayenthal, founder of N26, and Felix Haas, founder of IDnow).

      Founded in 2017
      Coworkers 100+
      Security and TechOps · Berlin · Hybrid Remote

      IT Governance, Risk and Compliance Analyst (f/m/d)

      We are hiring here at Upvest come and join the growing team!

      Loading application form