ICT Risk Oversight Specialist (f/m/d)

Apply now »

Date: 27 Mar 2025

Location: Luxembourg, LU

Company: Deutsche Börse Group

 

Your area of work

Clearstream is a large international financial institution offering post-trade infrastructure and securities services for the international and domestic markets worldwide.

The ICT risk management control function plays a pivotal role in safeguarding our organization against technological and information security risks. We partner closely with product, technology, security, and risk teams to ensure the resilience of our systems and services. We actively manage technology risks, steer ICT risk governance and framework design, perform focused risk assurance, and enable compliance for legal entities, branches, and representative offices in scope with direct reporting line to the corresponding executive boards.

The ideal candidate will have a deep understanding of technology and security frameworks, risk management practices, and regulations, also comfortable working cross functionally.

 

Your responsibilities

 

  • Assist in developing, implementing, and maintaining a DORA-compliant ICT Risk oversight program while working closely with Technology Risk Governance, Technology Risk Assurance, and other relevant teams.

  • Support the oversight of Clearstream digital operational resilience posture and advise on necessary technology risk control requirements. Stay updated with emerging trends and align these with organizational plans.

  • Monitor technology and security risks, providing independent oversight, and challenging the first line of defense when necessary.

  • Work with relevant functions across the three lines of defense to gather digital resilience requirements, ensure alignment, and meet compliance expectations. Offer insights from a technology risk perspective on key digital transformation initiatives, resilience testing, ICT third party supplier risk, and other key areas.

  • Assist in aligning digital operational resilience design with strategic goals. Provide recommendations based on evolving threats, risk appetite, business strategy, and regulatory changes. 

  • Support defining, monitoring, and reporting on risk metrics and key performance indicators. Support the preparation and delivery of ICT risk reports to senior management.

 

Your profile

 

  • 5+ years of experience in technology governance, risk, and compliance.

  • University degree in Computer Science, Technology Risk, Cyber Security, or related field.

  • Strong understanding of technology and security frameworks, risk management principles, and comfortable working cross functionally.

  • Experience and analytical skills understanding, structuring, and explaining complex topics; end-to-end thinking required.

  • Can turn incomplete, unstructured, or ambiguous data points into structured outcomes and pragmatic action plans.

  • Experience working with technology regulations, international standards, or best practices.

  • Stakeholders’ management skills and capacity to manage priorities simultaneously.

  • High self-responsibility & ownership; result orientation and customer focus.

  • Proficiency in written and spoken English, German is a plus.