Banking ISMS & DORA Security Consultant

Company description

Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern methods, fusing strategy, consulting, and customer experience with agile engineering and problem-solving creativity. United by our core values and our purpose of helping people thrive in the brave pursuit of next, our 20,000+ people in 53 offices around the world combine experience across technology, data sciences, consulting, and customer obsession to accelerate our clients’ businesses through designing the products and services their customers truly value.

Your Role

In this role, you will support the Information Security department ofour banking clients and actively contribute to the operation and further development of its Information Security Management System (ISMS). You will work closely with internal stakeholders and take ownership of defined security-related tasks in a regulated financial environment.

Your Responsibilities

Organize, structure, and document the task backlog of the Information Security department

Independently execute agreed-upon information security tasks, including the use of established ISMS tools and methods

Support operational teams and employees in integrating information security requirements into day-to-day activities

Coordinate closely with the Information Security Officer and relevant stakeholders

Actively operate and support established ISMS processes, including:

Requirements management and threat analysis

Structural analysis, including information networks

Protection needs assessments

Definition of target security measures

Development and implementation of security concepts

Target vs. actual analyses

Risk assessment and risk treatment

Reporting and documentation

Mandatory Requirements

At least5 years of professional experiencein relevant areas, such as:

Security and risk management (risk assessment and treatment)

Protection of information and assets

Information security governance

Information security incident management

Auditing of information systems and processes

Fluent German language skills (C2 level minimum)

At leastone recognized certificationin information security or information security risk management, for example:

ISACA CRISC, CISM, or CISA

ISO/IEC 27001 Lead Auditor

(ISC)² CISSP or T.I.S.P.

Certified IT-Grundschutz Consultant

(Certifications must be verifiable and provided as part of the application.)

Nice to Have

Active membership in relevant professional or industry associations

Publications or thought leadership in the field of information security

Strong project management skills with a structured and analytical mindset

Hands-on experience in designing, implementing, and operating ISMS solutions

Experience in building and maintaining security architectures

Solid background in IT governance and IT management

Very good understanding of regulatory frameworks and compliance requirements, in particularBAIT, DORA, and CRA

• An inclusive workplace that promotes diversity and collaboration.
• Access to ongoing learning and development opportunities.
• Competitive compensation and benefits package.
• Flexibility to support work-life balance.
• Comprehensive health benefits for you and your family.
• Generous paid leave and holidays.
• Wellness program and employee assistance.

As part of our dedication to an inclusive and diverse workforce, Publicis Sapient is committed to Equal Employment Opportunity without regard for race, color, national origin, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity, or religion. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at