Information Security Manager
Revolut · France
- Hybrid
- Full-time
- $120,000 / year
- France
Job highlights
- Lead local security strategy and policy development.
- Conduct risk assessments and manage vulnerabilities.
- Ensure vendor compliance and manage incidents.
- Collaborate with regulators and internal teams.
- Utilize technical expertise and analytical skills.
About the role
About Revolut
People deserve more from their money. More visibility, control, and freedom. Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, saving, investing, exchanging, travelling, and more — help our 70+ million customers get more from their money every day.
As we continue our lightning-fast growth, 2 things are essential to our success: our people and our culture. In recognition of our outstanding employee experience, we've been certified as a Great Place to Work™. So far, we have 13,000+ people working around the world, from our offices and remotely, to help us achieve our mission. And we're looking for more brilliant people. People who love building great products, redefining success, and turning the complexity of a chaotic world into the simplicity of a beautiful solution.
About The Role
Our Information Security team protects Revolut's systems, data, and people. They combine technical expertise with a proactive, risk-based mindset to stay ahead of threats and keep our technology and customers secure at every step.
We're looking for an Information Security Manager to lead our local security strategy and collaborate with regulators, management, and the Risk and Compliance team.
You’ll oversee the entire security lifecycle, from identifying risks and managing vulnerabilities to ensuring our third-party vendors meet strict standards.
Up to shape what's next in finance? Let's get in touch.
What You'll Be Doing
- Localising and defining information security policies and procedures
- Conducting annual information security risk assessment at entity and application level
- Testing the annual information security control plan in collaboration with the wider Information Security and Technology teams
- Conducting security vendor assessments
- Monitoring information security key risk indicators, ensuring escalation if a breach is identified
- Performing security risk and control assessments for new products or initiatives
- Conducting regulatory gap analysis for regulations and local laws
- Answering regulatory requests related to information security
- Designing data-driven dashboards on information security services and risks to report to internal committees
- Managing information security incidents
What You'll Need
- 5+ years of experience in information security management, ideally within financial services, banking, or payments
- Expertise in InfoSec and IT operations with a focus on security risks and mitigation
- Technical security knowledge and familiarity with regulatory requirements (DORA, PCI-DSS, PSD2, GDPR)
- The ability to deliver localised IT and InfoSec policies to meet French and European regulations
- Expertise in industry standards, like ISO 27001:2022
- An analytical mindset with great stakeholder management and communication skills
- Excellent organisational and time management skills, with the ability to multitask
- A high level of motivation with a positive, self-starter attitude
- Team collaboration skills
- The ability to work independently and take initiative when needed
- Flexibility and a willingness to tackle a variety of duties and learn new skills
Nice to have
- Experience within fast-paced environments
- Relevant information security certifications (CISSP, CISM, CRISC, CISA)
- Knowledge of building SQL queries for business intelligence/management
Diversity and Inclusion
Building a global financial super app isn’t enough. Our Revoluters are a priority, and that’s why in 2021 we launched our inaugural D&I Framework, designed to help us thrive and grow everyday. We're not just doing this because it's the right thing to do. We’re doing it because we know that seeking out diverse talent and creating an inclusive workplace is the way to create exceptional, innovative products and services for our customers. That’s why we encourage applications from people with diverse backgrounds and experiences to join this multicultural, hard-working team.
Important notice for candidates
Job scams are on the rise. Please keep these guidelines in mind when applying for any open roles.
- Only apply through official Revolut channels. We don’t use any third-party services or platforms for our recruitment. Always double-check the emails you receive. Make sure all communications are being done through official Revolut emails, with an @revolut.com domain.
- We won't ask for payment or personal financial information during the hiring process. If anyone does ask you for this, it’s a scam. Report it immediately.
Key skills/competency
- Information Security Management
- Risk Assessment
- Policy Development
- Regulatory Compliance
- Vendor Management
- Incident Management
- ISO 27001
- Data Security
- IT Operations
- Stakeholder Management
Skills & topics
- Information Security Manager
- Information Security
- Risk Management
- Compliance
- Cybersecurity
- IT Security
- Security Policies
- Regulatory Compliance
- Financial Services Security
- ISO 27001
- DORA
- GDPR
- PCI-DSS
- PSD2
- Information Security Audit
- Security Vendor Assessment
- Incident Management
- Security Strategy
- Risk Assessment
- Vulnerability Management
How to get hired
- Tailor your resume: Highlight your 5+ years of information security management experience, especially in financial services. Emphasize expertise in InfoSec, IT operations, risk mitigation, and regulatory knowledge (DORA, PCI-DSS, GDPR).
- Showcase regulatory understanding: Clearly demonstrate your ability to implement localized IT and InfoSec policies for French and European regulations and your expertise in standards like ISO 27001:2022.
- Prepare for behavioral questions: Be ready to discuss your analytical mindset, stakeholder management, communication skills, organizational abilities, and self-starter attitude.
- Highlight technical skills: Mention any relevant certifications (CISSP, CISM, CRISC, CISA) and knowledge of SQL queries for business intelligence if applicable.
Technical preparation
Behavioral questions
Frequently asked questions
- What is the primary focus of the Information Security Manager role at Revolut?
- The Information Security Manager role at Revolut focuses on leading the local security strategy, overseeing the entire security lifecycle from risk identification to vendor management, and collaborating with regulators and internal teams. This involves developing and implementing security policies, conducting risk assessments, and ensuring compliance with relevant regulations.
- What are the key regulatory requirements mentioned for this Information Security Manager position?
- The key regulatory requirements mentioned for this Information Security Manager position include DORA, PCI-DSS, PSD2, GDPR, and ISO 27001:2022. Candidates are expected to have technical security knowledge and familiarity with these regulations, as well as the ability to deliver localized IT and InfoSec policies to meet French and European regulations.
- What experience is crucial for an Information Security Manager at Revolut?
- Crucial experience for an Information Security Manager at Revolut includes 5+ years in information security management, ideally within financial services, banking, or payments. Expertise in InfoSec and IT operations with a focus on security risks and mitigation is also essential. Familiarity with industry standards like ISO 27001:2022 is highly valued.
- How does Revolut approach diversity and inclusion in its hiring process for the Information Security Manager role?
- Revolut is committed to diversity and inclusion, encouraging applications from people with diverse backgrounds and experiences. They believe that seeking out diverse talent and creating an inclusive workplace leads to exceptional products and services. The role is part of a multicultural, hard-working team.
- What are the 'nice to have' qualifications for an Information Security Manager at Revolut?
- Nice to have qualifications for the Information Security Manager role at Revolut include experience in fast-paced environments, relevant information security certifications such as CISSP, CISM, CRISC, or CISA, and knowledge of building SQL queries for business intelligence or management purposes.
- How can I ensure my application is considered for the Information Security Manager position at Revolut?
- To ensure your application is considered, tailor your resume to highlight your experience in information security management, particularly within the financial sector. Emphasize your knowledge of regulatory requirements and industry standards, as well as your analytical and stakeholder management skills. Clearly demonstrate your ability to localize policies to meet French and European regulations.