Chief Information Security Officer

Are you ready to take on a key role in securing critical financial infrastructure and work with risk management and IT security in bec Financial Technologies? Then we might have the right opportunity for you.

About the position
bec’s new Chief Information Security Officer (CISO) heads a highly specialized unit whose main task is to secure critical national financial infrastructure and maintain and develop a strong and effective level of risk management and security in bec. The new CISO will also be part of bec’s ambitious TechUp Winning Customers strategy.

bec is seeking a CISO, who can define the direction for bec’s risk management and security strategy framed on a highly risk-based approach, and who understands risk management and cyber defense as critical components for our customers, and the bec organization. bec is also highly focused on the leadership of the Risk & Security team.

With reference to bec’s Chief Financial Officer and as a member of the Finance & Risk management team, the new CISO will lead the area with three managers and 30 highly qualified specialists working with cyber security, risk management and enterprise risk management.

bec is a large IT organization consisting of a total of approx. 1.600 employees based in Denmark and Poland. IT operations and cyber defense services are outsourced to JN Data A/S, and bec is further onboarding several cloud solutions.

Primary responsibilities
The new CISO will expectedly have several years of experience and track record from a similar position, which requires solid knowledge of the financial sector, a passion for keeping up with the technical developments in IT security, and the development of the threat picture in general. The CISO must also keep abreast of relevant legislation and secure an effective control environment. Further, the CISO is responsible for supporting the organization concerning security, IT-audit, outsourcing, and similar.

The CISO has a broad interface throughout the company and within bec's various business areas and key customers. The CISO must be good at networking and building relationships with relevant parties, stakeholders, and customers.

The new CISO will be continuously exposed to the Executive Management Team in bec and, occasionally, the Board of Directors. Therefore, the candidate must be experienced in communicating at board level in writing and orally in a business and risk perspective.

The CISO has a dotted line to the CEO implemented through bec’s IT Risk & Security Board.

Who are we looking for?
We expect the candidate to have a relevant university degree within IT, security, or similar. Further, we expect the candidate to have relevant certifications like CISSP, CISM, CRISC, CCSP, ESL, CISA, or similar.

The ideal candidate comes with a solid background within IT, a strong track record in cybersecurity/defense and leadership which includes the following professional and personal qualifications:

• Management experience/experience with employee development
• Solid knowledge of cybersecurity, including security in cloud solutions
• Solid knowledge of risk management, risk, and threat analysis and intelligence
• Experience in designing and executing on IT strategy and related implementation plans
• Experience with ISO 27000 series, NIST Cyber Security Framework, and similar relevant frameworks.
• Experience with incident response and able to work along with 1st line in case of security incidents
• Experience from an outsourced IT environment -both regarding the use of consultants, partner integrations and SaaS / PaaS solutions and nearshoring and related regulation
• Experience with Financial authorities and financial sector regulation as outsourcing regulation, EBA guidelines and similar
• Experience with IT-Audit and other types of Audits and certifications
• Experience with user-focused awareness

On a personal level:

• Takes responsibility and makes things happen
• Provide strong leadership and empower the employees within the area
• Curious, persistent, thrives on tackling challenges and making a difference
• Thrives for best-practices and what-good-looks-like as well as challenging as-is
• Analytical mindset and good problem-solving skills of complex and challenging issues
• Team player with good stakeholder and collaborative skills and skilled to navigate among many stakeholders
• Good at conveying complex messages, so they become simple and easily understandable
• Outgoing with good networking skills - both internally and externally
• Robust - can handle pressure and short deadlines
• A confident person with integrity, empathy and a positive attitude to life
• Fluent in Danish and English – written as well as oral

Who is bec?
We are a fintech company with branches in Denmark and Poland. We create financial solutions for approximately 25% of the Danish bank customers. We make it possible for them to check their account online, pay their bills, and transfer money. In other words, everything it takes to run a bank. We are organized in a flat hierarchy, where everybody works together and learn from each other in order to create the strongest possible solutions for the banks, their customers, and the Dan-ish society. You will join a community of people with curious mindsets, who are building the financial infrastructure of tomorrow.

Can you see yourself with us?
Then we look forward to receiving your application and resume as soon as possible and no later than January 2, 2022. We encourage you to apply as soon as possible, as we will conduct interviews continuously. If you have questions related to the position, please do not hesitate to contact Talent Acquisition Partner Anders Rud Skak-Arnstrup at 23800644.

We are committed to hiring top talent regardless of race, religion, color, national origin, sexual orientation, gender identity, and age. As a result, we encourage all qualified candidates to apply for the position.