Cyber Risk Management Functional Lead

1 week ago


Prague, Hlavní město Praha, Czech Republic Deutsche Börse Group Full time 1,200,000 - 2,400,000 per year

The Group Security department directly contributes to the Deutsche Börse Group ICT strategy. As a central service provider for the Group entities, Group Security is responsible to protect information assets in terms of safety, integrity, confidentiality, authenticity and availability by enforcing ICT controls based on the relevant regulatory requirements and the international standards like ISO 2700x-series on the Information Security Management System.

Your area of work:

In this role, you will have a unique opportunity to contribute to a growing department at the heart of a dynamic global capital markets business. As part of the Information Security Risk Management team, you will help enforce the ICT Risk Framework in close collaboration with the CISO, Group Risk, Compliance Management, and Data Privacy functions.

Your primary focus will be on Cybersecurity Risk Management, our core area of expertise. You will act as a trusted advisor to business partners and senior management, providing expert consultation on cybersecurity risk matters. In addition, you will support a variety of ICT risk-related initiatives, helping to ensure that solutions are robust, compliant with regulatory requirements, our business strategy and aligned with industry best practices.

Your proactive mindset and strong interpersonal skills will be key to building trust and fostering collaboration with stakeholders across business and technology. You will thrive in a friendly, cooperative, and supportive environment that values initiative and teamwork.

Your responsibilities:

Lead the development, execution, and enhancement of cyber risk assessment methodologies, processes and tooling in accordance with the ICT Risk Strategy and the related DBG policiesAct as the subject matter expert for our cybersecurity risk assessment domainCoordinate and conduct risk assessments for ICT assetsCollaborate with asset owners and security teams to identify, evaluate, and mitigate cyber risksProvide expert guidance on risk treatment options and support the development of remediation plansMaintain and evolve risk scoring models and ensure consistent application across assessments.Prepare and present risk assessment results to senior stakeholders, including risk owners and governance bodies.Monitor regulatory developments and industry trends to ensure compliance and relevance of assessment practices.Support internal and external audits and regulatory inquiries related to cybersecurity risk management.Contribute to the development of cyber risk metrics and reporting for executive and board-level audiences.

Your profile:

Master degree in Information Technology, Cybersecurity, Business Informatics or comparable education10+ years of experience in IT risk management, Cybersecurity, GRC, IT Audit or similarCertifications like ITIL, CISM, CRISC, CISA, PMP or similar is an advantageKnowledge of general legal and regulatory frameworks in the financial industry, for example DORA, NIS2, EBA Guidelines on ICT and security risk management, and industry standards like ISO/IEC 2700x or NISTStrong analytical skills, critical thinking, ability to identify problems and propose solutionsAutonomous and resilient, with strong planning and organization skillsExceptional communication and stakeholder management skills, both verbal and written in English (German would be considered an asset)

Location: Prague



  • Prague, Hlavní město Praha, Czech Republic Rapid7 Full time 90,000 - 120,000 per year

    We are seeking a proven leader to oversee and manage the growing engineering team for our Threat Intelligence in Prague. This position is critical as the TI platform is key to Rapid7's evolving security strategy. If you are someone who loves all things technical, know that this role requires a passionate technologist who will bring hands-on leadership and...

  • IT Cyber

    1 week ago


    Prague, Hlavní město Praha, Czech Republic Devoteam Full time 60,000 - 120,000 per year

    Devoteam is a leading consulting firm focused on digital strategy, tech platforms and cybersecurity.By combining creativity, technology and data insights, we empower our clients to transform their business and unlock the future.With more than 25 years of experience and employees across Europe and the Middle East, Devoteam promotes responsible technology for...


  • Prague, Hlavní město Praha, Czech Republic Novartis Full time

    SummaryLocation: Prague, Czech Republic/Barcelona, Spain; #LI-Hybrid (12 days/month in office) Internal job title: Associate Director, DDIT ISC Data Protection & CSOC Engineering The role is based in Prague/Barcelona. Novartis is unable to offer relocation support for this role: please only apply if this location is accessible for you. As the role is part...


  • Prague, Hlavní město Praha, Czech Republic Barclays Full time

    We are seeking a highly motivated AVP/VP level - Climate Risk Modelling Analyst Model Developer to join our Quantitative Analytics Climate Risk and Portfolio Management team. This is a high-impact role focused on the quantification and management of climate and catastrophe risk. You will play a key role in developing the firm's Climate Risk Appetite...

  • Risk Analyst

    1 week ago


    Prague, Hlavní město Praha, Czech Republic Pipedrive Full time 40,000 - 80,000 per year

    We believe it takes great people to create a great product. That's why our team lives our company values, and we hire based on them, too. Since 2010, Pipedrive has been on a mission to support sales and marketing teams with easy-to-use, powerful tools that make everyday work faster and easier. Today, our cloud-based software is trusted by over 100,000...

  • Risk Analyst

    1 week ago


    Prague, Hlavní město Praha, Czech Republic Pipedrive Full time 60,000 - 120,000 per year

    We believe it takes great people to create a great product. That's why our team lives our company values, and we hire based on them, too. Since 2010, Pipedrive has been on a mission to support sales and marketing teams with easy-to-use, powerful tools that make everyday work faster and easier. Today, our cloud-based software is trusted by over 100,000...


  • Prague, Hlavní město Praha, Czech Republic EmbedIT Full time €60,000 - €80,000 per year

    Role descriptionType of contract: Full-timePlace of work: Hlavní město Praha, Czech RepublicMeet the guys you might work withWe are Cyber Security in EmbedIT, we are the ones that shape the landscape of Information Security for our customers, primarily for the Home Credit Group, SKODA Group, ITIS Group, PPF itself and selected companies in the PPF Group as...


  • Prague, Hlavní město Praha, Czech Republic MSD Full time

    Job DescriptionOur company is an innovative, global healthcare leader committed to improving health and well-being in 140 countries around the world.We focus our research on conditions that affect millions of people around the world, such as Alzheimer's, Diabetes, and Cancer, while expanding our strengths in areas such as vaccines and biologics.Join us in...


  • Prague, Hlavní město Praha, Czech Republic EmbedIT Full time 1,200,000 - 2,400,000 per year

    Role descriptionType of contract: Full-timePlace of work: Hlavní město Praha, Czech RepublicMeet the guys you might work withWe are Cyber Security in EmbedIT, we are the ones that shape the landscape of Information Security for our customers, primarily for the Home Credit Group, SKODA Group, ITIS Group, PPF itself and selected companies in the PPF Group as...


  • Prague, Hlavní město Praha, Czech Republic Barclays Full time 60,000 - 120,000 per year

    Date live:08/28/2025Business Area:Risk Finance and TreasuryArea of Expertise:TechnologyContract:PermanentReference Code:JR Join us as a Credit Risk Application Developer at Barclays, where you'll spearhead the evolution of our digital landscape, driving innovation and excellence. You'll harness technology to revolutionise our digital offerings, ensuring...