N26
digital banking
ICTGRC–ICTGovernanceManager
“ICT GRC – ICT Governance Manager at N26. Skills: ICT governance framework, regulatory requirements, risk management, information security compliance, governance controls, audit readiness, compliance practices. Own, define, and continuously evolve the Governance Documentation framework for Information Security within the CISO Office (2nd LoD), including policies, standards, procedures, work instructions, and process flows. Ensure governance artifacts remain aligned with regulatory requirements, i”
What You'll Achieve.
ensure alignment with regulatory requirements, industry standards, and organisational strategy; strengthen governance, operational resilience, audit readiness, and compliance practices; shape innovative and scalable approaches to ICT risk and control management; Ensure governance artifacts remain aligned with regulatory requirements, industry best practices, and organisational strategy; Ensure its completeness, regulatory alignment, and operational effectiveness; Drive enterprise-wide integration of Target Measure Catalogue requirements into 1st line procedures and operational processes; Ensure accurate and traceable mapping of target measures to relevant regulations and standards; Ensure comprehensive mapping of governance controls to regulations such as MaRisk, DORA, AI Act, CRA, PSD3 and standards including ISO 27001/27002, NIST, and other applicable frameworks; Drive DORA related activities to ensure operational resilience within the ICT landscape; Proactively monitor regulatory developments and translate them into actionable governance enhancements; Own the end-to-end delivery of all IT audits related requests for the CISO Office; Ensure timely remediation, sustainable control improvements, and executive-level reporting; Define and implement AI-enabled approaches to automate compliance monitoring and control testing
Industry & Context.
Excellent analytical and problem-solving capabilities in complex regulatory environments
What They're Looking For.
Must Have
6+ years of experience in IT governance, risk management, and information security compliance, ideally within banking or financial services, Knowledge of regulatory requirements such as MaRisk, DORA, AI Act, CRA, PSD3 and international standards such as ISO 27001/27002, NIST, COBIT, understanding of IT infrastructure, cloud security, application security, and enterprise control environments, Demonstrated experience leveraging automation and AI tools to enhance governance and compliance frameworks
Nice to Have
Bachelor’s degree in Information Technology, Computer Science, Information Security, or related field, Professional certifications such as CISA, CISM, CRISC, or equivalent strongly preferred, English German (fluent or basic) preferred, with willingness to learn
What You'll Do.
and continuously evolve the Governance Documentation framework for Information Security within the CISO Office (2nd LoD)
Ensure governance artifacts remain aligned with regulatory requirements
industry best practices
and organisational strategy
Establish clear accountability models and governance operating models across 1st and 2nd line functions
Own and strategically develop the Target Measure Catalogue (TMC)
ensuring its completeness
and operational effectiveness
Drive enterprise-wide integration of Target Measure Catalogue requirements into 1st line procedures and operational processes
Ensure accurate and traceable mapping of target measures to relevant regulations and standards
Oversee change management processes related to TMC updates and regulatory changes
Ensure comprehensive mapping of governance controls to regulations such as MaRisk
PSD3 and standards including ISO 27001/27002
and other applicable frameworks
Drive DORA related activities to ensure operational resilience within the ICT landscape
Proactively monitor regulatory developments and translate them into actionable governance enhancements
Act as the subject matter expert for ICT Governance during regulatory reviews and supervisory interactions
Own the end-to-end delivery of all IT audits related requests for the CISO Office
Act as the primary escalation and decision authority for audit findings
Ensure timely remediation
sustainable control improvements
and executive-level reporting
Define and implement AI-enabled approaches to automate compliance monitoring and control testing
How You'll Work.
Team & Collaboration
work cross-functionally; Establish clear accountability models and governance operating models across 1st and 2nd line functions; Proven leadership and stakeholder management skills across 1st and 2nd line functions
Communication Scope
executive communication skills; board-ready reporting and presentations
Process & Methodology
Advanced project and program management skills with the ability to manage parallel initiatives independently
Applying for this ICT GRC – ICT Governance Manager role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about N26?
Real rants from real employees. Read before you apply.