Director of IT Security

Team

For this challenging and highly impactful role, we are seeking a dedicated, highly communicative IT Security Manager with vision and drive. In this position, you will lead and develop Raisin's internal security teams. You will act as a critical internal sparring partner (for Business, IT, and the 2nd Line of Defense) and take the absolute lead in coordinating our technical security implementation. As a versatile leader with a comprehensive overview of our security posture, you will ensure that our internal operations are resilient, compliant with regulations like DORA, and seamlessly executed by your teams.

Your Responsibilities

• Team Leadership & Internal Execution: Take ownership of our internal security operations. You will lead, mentor, and steer our internal security experts in a results-oriented manner, ensuring the continuity and excellence of daily security operations.

• Internal Coordination & Sparring: Act as the central, consultative liaison across the company. You will lead cross-departmental coordination of security topics, define clear security requirements for our Infrastructure and engineering teams, and develop pragmatic, scalable solutions.

• 1st Line Security Operations: Oversee the technical execution performed by your teams. Your duties will include actively participating in incident analysis, threat mitigation, and ensuring robust monitoring is in place.

• 2nd Line Liaison & DORA Alignment: Serve as the central point of contact for the "2nd Line of Defense" (CISO). Ensure that our operational reality and technical controls align with overarching IT Governance, risk frameworks, and regulatory requirements like the Digital Operational Resilience Act (DORA).

• Project Management: Drive and contribute to broader projects. If you enjoy organizing and structuring security-related agendas across the IT landscape, there is plenty of impactful work to be done!

• Cloud Security Oversight: Leverage your deep understanding of AWS Cloud Infrastructure and the AWS Shared Responsibility Model to guide your teams in maintaining a secure, robust, and compliant cloud environment.

• Strategic Vendor Management: Pragmatically manage relationships with third-party security vendors (e.g., security tooling, external testing, specialized services). You will steer these partnerships to ensure strict SLA adherence, cost-effectiveness, and a strong Return on Investment (ROI) for our security stack.

Your Profile

• Extensive Professional Experience: 10+ years of overall experience within the Cybersecurity or Information Security space, combined with at least 3+ years of proven experience working directly as an IT Security Manager or in a similar leadership capacity.

• Broad Cybersecurity Background: The world of security is vast, and your holistic expertise counts. You have broad experience across domains such as IT Governance/GRC, ISMS, ISO 27001, BCM, NIS 2, DORA, Vulnerability Management, SOC/SIEM, IAM/PAM, Penetration Testing, Network Security, or DevSecOps.

• Generalist Leadership Mindset: A comprehensive overview and a fundamental understanding of security technologies, industry standards, and their potential business impact are highly valued. You know how to guide specialists without getting lost in the weeds of individual security tools.

• Team Management Experience: Proven track record in leading, structuring, and motivating internal technical teams in a fast-paced, mission-critical IT environment.

• Technical Acumen: Really good understanding and practical working knowledge of AWS Cloud Infrastructure, including a firm grasp of the cloud Shared Responsibility Model and how to implement it effectively.

• Framework Knowledge: Basic knowledge of IT Service Management (ITSM, ITIL) and a solid technical understanding of the security domain are prerequisites.

• Work Style & Traits: You possess a strong sense of responsibility, flexibility, and an eagerness to engage with new topics. You are distinguished by a commitment to collaborative teamwork, a respectful and supportive interpersonal style, and a work approach that is solution-oriented, analytical, structured, and reliable.

• Language & Communication: Excellent proficiency in spoken and written English alongside fluent German is a plus.

Benefits

• Employee Development Budget of €2,000 and four full training days per year.

• Flexible working hours, home office and 30 vacation days.

• A company pension scheme (Betriebliche Altersvorsorge), which we support with 20%.

• Enjoy more than 50+ different sports with Urban Sports Club: We subsidize your membership with more than €20 per month.

• Do you miss being in the office? The Deutschland Ticket gets you there, which we subsidize with €25 per month.

• Love cycling? With JobRad, lease the bike of your choice and enjoy tax savings, plus Raisin covers your monthly insurance costs.

• Hungry all the time? Snacks, daily fresh fruit as well as drinks provided at the office.

• You are moving from another country or city to join us? We may support your relocation.