ICT GRC - ICT Compliance Manager

About the opportunity

We are seeking an ICT GRC - ICT Compliance Manager to join our team. In this role you will be fully accountable for the design, implementation, and continuous improvement of our IT compliance framework. You will lead the compliance topic end-to-end, ensuring our IT systems and information security practices are robust, scalable, and aligned with evolving European and German regulatory requirements. In this role, you will not only ensure adherence to regulations, you will shape how compliance is embedded into technology, product development, and security practices. You will act as the central authority for IT compliance within the 2nd Line of Defense, driving alignment across stakeholders and proactively steering regulatory readiness in a fast-changing environment. With AI and automation transforming compliance processes, you will evaluate, design, and implement AI-driven solutions to enhance compliance monitoring, risk assessments, second-line control testing, and regulatory reporting. This is your opportunity to redefine compliance operations in a technology-forward organisation.

In this role, you will:

• Own the IT compliance framework within the 2nd Line of Defense, reporting to the Deputy CISO.
• Define, maintain, and continuously enhance the target measure catalogue in alignment with internal security standards and regulatory requirements.
• Lead independent second-line compliance assessments of the ISMS and ICT control environment.
• Ensure full adherence to EU and German regulations (e.g., MaRisk,CSA,PSD3, DORA) and relevant industry standards (ISO 27001/27002, NIST, etc.).
• Drive regulatory gap analyses and define strategic remediation roadmaps.
• Own regulatory reporting related to ICT compliance and present progress, risks, and mitigation plans to senior stakeholders.
• Act as the primary contact for internal and external audits related to IT compliance topics for the second line CISO Office.
• Design and implement AI-enabled compliance monitoring and automation initiatives.
• Facilitate executive-level discussions on compliance posture, emerging regulatory developments, and risk exposure.
• Continuously improve governance structures, compliance processes, and control effectiveness.
• You will independently audit and challenge 1st line ICT processes and information domain controls for alignment with DORA requirements, assessing control design and operating effectiveness, identifying regulatory gaps, and ensuring sustainable remediation in line with second Line oversight expectations within the bank.
• Drive DORA related Compliance activities in the second-line and collaborating with other teams in the organisation to facilitate adherence. 

What you need to be successful:

Background: 

• Bachelor’s or Master’s degree in Information Technology, Computer Science, Information Security, or a related field (preferred).
• Professional certifications such as CISA, CISM, CRISC, ISO 27001 Lead Auditor/Implementer, or equivalent strongly preferred.
• Minimum of 5–7 years of experience in IT risk management, information security, and compliance, ideally within banking or financial services.
• Proven experience owning regulatory compliance topics independently.
• Deep knowledge of regulatory frameworks such as MaRisk, BAIT, DORA, and industry standards such as ISO 27001/27002 and NIST.
• Strong understanding of IT infrastructure, cloud security, application security, and network security.

Skills: 

• Strong strategic and conceptual thinking combined with hands-on execution capability.
• Demonstrated ability to lead complex compliance initiatives independently.
• Advanced risk assessment and control evaluation expertise.
• Strong project and stakeholder management skills across cross-functional environments.
• Experience interacting with regulators and external auditors.
• Proficiency in compliance and risk management tooling.
• Experience with JIRA, Confluence, and FigJam is a plus.
• Excellent written and verbal communication skills.
• Ability to translate complex regulatory requirements into clear business guidance.
• Fluency in English and German are required (spoken and written).

Traits:

• Strong sense of ownership and accountability.
• Proactive leader with a bias for action.
• Comfortable challenging stakeholders constructively.
• Highly detail-oriented with strong analytical thinking.
• Adaptable and resilient in a fast-changing regulatory environment.
• Continuous improvement mindset.
• High ethical standards and strong commitment to confidentiality and data protection.
• Ability to operate independently while fostering strong collaboration.

What’s in it for you:

• Accelerate your career growth by joining one of Europe’s most talked about disruptors 🚀.
• Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation. 
• As an N26 employee you will have access to a Premium subscription on your personal N26 bank account. As well as subscriptions for friends and family members.    
• Additional day of annual leave for each year of service.  
• A high degree of autonomy and access to cutting edge technologies - all while working with a friendly team of peers of diverse nationalities, experiences, and backgrounds. 
• We work in a hybrid setup, combining in-office collaboration with the flexibility to work from home.
• A relocation package with visa support for those who need it.

Who we are

N26 has reimagined banking for today’s digital world. Technology and design empower everything we do and it’s how we are building the global banking platform the world loves to use. We've eliminated physical branches, paperwork, and hidden fees for an elegant digital experience and supreme savings. Giving people the power to live and bank their way is what gets us out of bed in the morning and inspires the work that we do.  We are headquartered in Berlin with offices in multiple cities across Europe, including Vienna and Barcelona, and a 1,500-strong team of more than 80 nationalities. 

Do you see yourself thriving in this role?

We’d love to see your application even if you don’t meet 100% of the criteria. You may just be the right fit for this or other roles!

Equal opportunities for all

At N26, we believe our strength lies in our people and the varied perspectives they bring. We strive to build diverse teams that drive innovation and business success. We actively seek talent from all backgrounds and welcome applications from all genders, cultures, sexual orientations, abilities, neurodiversities, and ages. We are committed to providing an excellent and accessible candidate experience. If you require any accommodations to make this process work for you, please let us know. We’re here to support you!

Discover more about Diversity & Inclusion at N26: https://n26.com/en-eu/diversity-and-inclusion