NN Group is bolstering its Group Finance security, a strategic function that underpins our risk management, regulatory compliance, and robust control environment. We are looking for an Information Security Officer with a proactive mindset to help us manage and mitigate information security risks across our dynamic Group Finance environment.
Responsibilities
Assess, review, and report on the implementation of security controls based on our IT Control Framework (ITCF)
Assist in information risk assessment procedures and create in-control statements
Verify whether control measures are properly set up and formulate recommendations for improvement, acting as point of contact during audits
Perform risk assessments on third-party suppliers to ensure compliance with NN's security requirements and regulatory obligations
Conduct threat modelling, interpret vulnerabilities, and advise DevOps teams on solutions
Support and counsel teams in risk assessments, mitigating risks, and enhancing their security posture
Define, review, and help implement standards and guidelines to facilitate effective information security and compliance across Group Finance
Benefits
The opportunity to be seen as the information security expert within energetic DevOps teamsCollaboration with internal audit, second line roles, and multiple teams across Group FinanceA diverse portfolio of security and compliance challenges, including hands-on support to DevOps teamsGuidance and knowledge‑sharing from senior security colleagues, supporting your professional developmentA team environment that values flexibility, responsibility, and open communicationAbout You2-5 years' experience as a Security Officer, ideally within the financial sectorA Bachelor's or Master's degree, preferably with additional certifications (e.g., CISSP, CRISC)A solid understanding of information security controls and experience closing IT security audit findingsExperience advising teams on security measures, preferably in cloud-based environmentsProactive, result‑oriented, and skilled at setting priorities and planning aheadCapable of effective dialogue with product owners about application integrity, identifying risks, and proposing improvementsAble to advocate for, communicate, and defend agreed internal guidelines for information securityStrong communication and advisory skills, and a supportive team player open to adapting as priorities shiftPerks of joining NNRemote-friendly setup, h owever, as a team, we aim to meet in person at least once a weekEnjoy Flexi Time Off: Take paid vacation days beyond the usual, with your manager's thumbs-upMonthly home office allowance, healthy meal allowance, and up to CZK 20,000 in Cafeteria pointsOptional MultiSport card, pension contributions, and discounted life insuranceContinuous professional development through tailor-made trainingsUp to CZK 60,000 referral bonus for recommending candidatesModern tech gear: company laptop, iPhone, O2 plan with generous dataHow we hireHealth insurancePaid time offRemote work optionsPerformance bonus
Nngroup · Prague, Czechia