Information Security Manager (m/f/d) Permanent employee, Full-time · Berlin

Welcome to Ratepay – Europe's No. 1 white-label payment provider. We exist so consumers can pay easily, conveniently and safely online.

Established in 2009, Ratepay is Europe’s leading white-label BNPL payment provider. 50% of German shoppers have already paid with Ratepay; we manage approx. €4.7 billion in transactions and handle approx. 2.5M transactions per month. Our products include instalment payments with immediate online confirmation, open invoice, direct debit, and prepayment but what makes us different is that we put our consumers totally in control. How? Because we don’t act as a payment “brand” in-between our Merchant or Customers, but rather a technology service. Through our 350+ commercial partnerships, we take care of payment transactions for many of the largest online shops & payment providers such as Eurowings, About You, PayPal, eBay and more.

Information Security – Nobody Gets Past Us!

We protect the business from attacks and disruptions - including the data of our merchants and millions of shoppers. We enhance the security of products and processes, provide greater visibility of risks and, through our Business Continuity Management, ensure that viable emergency plans are in place, just in case. Our role is as much about compliance as it is about creating and maintaining a level playing-field with rules and boundaries that enables an enjoyable experience for all players. Security by design, second line audits and using security tools is a core part of our job.
You are a good match for us if you care about security, enjoy challenging, diverse projects, and intensive collaboration with a broad range of internal and external stakeholders in a diverse team.

The Role:

Reporting to our Information Security Officer, the (Senior) Information Security Manager is an important position within Ratepay, and crucial to our long-term security capabilities.
As (Senior) Information Security Manager you are responsible for maintaining and improving Ratepay's Information Security Management Systems (ISMS).

The Information Security team is part of the CFO area (due to regulations) but you work closely with all teams at Ratepay and part of your role includes translating information and requirements between IT and non-IT teams.
You'll have close collaboration with key stakeholders including Engineering, Infrastructure, Product, Finance, Commercial and Legal, and naturally work directly with our Security/IT team.

• You support in creating, reviewing and maintaining guidelines and policies as well as building new processes to manage risks.
• You ensure internal and external requirements are met.
• You support Ratepay's teams in implementing requirements.
• You accompany external and conduct internal audits.
• You are responsible for Ratepay's Information Risk Management.
• You communicate and collaborate across all Ratepay departments.
• You strengthen Ratepay's Information Security culture and awareness.
• You support all teams with documenting their processes.

• German language skills for professional regulatory context are mandatory
• Knowledge of Information Security Management Systems
• Deep understanding of Information Risk Management
• Broad knowledge in several IT-related fields (e.g. Cloud, Infrastructure, Software Development)
• Familiarity with relevant security frameworks (e.g. ISO 27001, DORA, ZAIT)
• Experience in preparing and conducting internal second-line audits
• Working with external stakeholders (e.g. auditors, parent company or regulators)

• Experience in financial services/banking or within a regulated environment
• Relevant certifications; CISSP, CISM, CCSP, ISO 27001 (Lead) Auditor, CISA, CRISC
• Cloud security
• Process analysis and management (using BPMN v2)

• Flexible working hours and hybrid working options to balance work and family life
• Surrounded by entrepreneurial people with plenty of room for creativity and new ideas
• A stable working environment (we are part of the Nexi Group - one of the biggest financial groups in Europe)
• Room for personal growth and professional development
• Trustful interaction in a welcoming team with flat hierarchies
• A highly diverse and culturally ambitious business with 40+ nationalities
• A challenging job in a rapidly growing industry
• The opportunity to work within a fast-moving industry leader combining modern technology and standards

• Company and team events, knowledge exchange and the opportunity to contribute your ideas
• Generous private pension scheme - Ratepay matches 100% of your contribution up to 100 Euros per month
• The chance to get involved in social projects as part of our sustainability initiative
• Become a digital nomad: Work with Ratepay from any country within the EU for up to 3 months per year
• Annual BVG allowance to supplement the cost of public transport in Berlin
• Equipment support allowance
• Seasonal vaccinations, health checks and eye exams
• Self-care days
• 28 days vacation
• Employee Bereavement plan
• Social Friday, where employees can take a half day off to contribute to a community initiative
• Access to a corporate benefits platform where employees can get great discounts and offers for a range of online shops and activities
• Free language learning through Babbel as well as group live classes for those who want to improve their English or German
• Access to learning platforms like Udemy for teams can attend conferences and, if included in their P&D goals, can attend additional training sessions.

We value our diversity and welcome everyone to our team. Regardless of ethnic and social background, religious beliefs, worldview, gender, sexual orientation, physical and mental limitations, age, marital status, educational background and nationality.
With over 250 employees and 40 different nationalities, we take our values seriously. These include; ownership, growth, integrity, collaboration, customer centricity and inclusion (4/7 of our C-Level Board members are female).