You deserve to do what you love, and love what you do – a career that works as hard for you as you do. At Fiserv, we are more than 40,000 #FiservProud innovators delivering superior value for our clients through leading technology, targeted innovation and excellence in everything we do. You have choices – if you strive to be a part of a team driven to create with purpose, now is your chance to Find your Forward with Fiserv.

Calling all innovators – find your future at Fiserv.

We’re Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants, and consumers to one another millions of times a day – quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we’re involved. If you want to make an impact on a global scale, come make a difference at Fiserv.

Job Title

What does a successful IT Compliance Expert do?

You will play a key role in ensuring the digital resilience of FD GmbH and work with internal departments and external stakeholders. Your responsibilities include monitoring and implementing the requirements of the Digital Operational Resilience Act (DORA), particularly in the areas of ICT risk management, information security, incident reporting, and service provider management. The core tasks include developing and implementing guidelines, managing the implementation of requirements in the pillars, conducting risk analyses and audits, training for employees, and reporting to senior management.

What you will do:

• Implement DORA requirements by monitoring and ensuring compliance with all DORA requirements within the company.
• Responsibility for ICT risk management by identifying, assessing, and managing information and communication technology (ICT) risks in accordance with DORA, as well as assisting in the preparation of reports for supervisory authorities/committees.
• Responsibility for incident reporting by developing and maintaining processes for the management and reporting of ICT incidents.
• Responsibility for information security by implementing and monitoring measures to ensure information security and cyber defense.
• Service provider management by assessment and management of digital risks posed by external IT service providers.
• Responsibility for governance and reporting by establishment of control mechanisms and preparation of regular reports on the status of DORA compliance for senior management.
• Trainings and awareness duties that include conducting trainings for employees to promote awareness of digital resilience.
• Close coordination with various departments such as legal, risk, and IT management, as well as external supervisory authorities; as well as coordination of audit and review processes (internal audit, BaFin, ECB, JAP).

What you will need to have:

• Experience in information security and ICT risk management, ideally in the financial sector.
• Knowledge of relevant regulatory standards such as ISO 27001, NIST, and COBIT.
• Regulatory knowledge of DORA and other relevant regulations.
• Fluent German
• Analytical skills and a proactive, independent approach to work.
• Strong communication and collaboration skills (with authorities and internal committees).

What would be great to have:

• Knowledge of third-party providers (outsourcing and other external procurement)
• Experienced with IT projects.

Der IT Compliance Experte (DORA) spielt eine Schlüsselrolle bei der Sicherstellung der digitalen Resilienz der FD GmbH und arbeitet eng mit internen Abteilungen und externen Stakeholdern zusammen.
Zu seinen Aufgaben gehören die Überwachung und Umsetzung der Anforderungen des Digital Operational Resilience Act (DORA), insbesondere in den Bereichen IKT-Risikomanagement, Informationssicherheit, Incident-Reporting und Dienstleistermanagement.
Zu den Kernaufgaben gehören die Entwicklung und Implementierung von Richtlinien, die Steuerung der Anforderungsumsetzung in den Pillars, die Durchführung von Risikoanalysen und Audits, die Schulung von Mitarbeitern sowie die Berichterstattung an die Geschäftsleitung.

What you will need to have

• Erfahrung im Bereich Informationssicherheit und IKT-Risikomanagement, idealerweise im Finanzsektor.
• Kenntnisse relevanter regulatorischer Standards wie ISO 27001, NIST und COBIT
• Regulatorisches Wissen zu DORA und anderen relevanten Vorschriften.
• Analytische Fähigkeiten und eine proaktive, eigenständige Arbeitsweise.
• Ausgeprägte Kommunikations- und Kooperationsfähigkeiten (mit Behörden und internen Gremien).

What would be great to have

• Kenntnisse im Umfeld von Drittanbietern (Auslagerung & sonst. Fremdbezug).
• Erfahrung mit IT Projekten.

#LI1-IB

Thank you for considering employment with Fiserv. Please:

• Apply using your legal name
• Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable).

Our commitment to Diversity and Inclusion:

Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law.

Note to agencies:

Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions.

Warning about fake job posts:

Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.