Information Security Officer

We are Billie, the leading provider of Buy Now, Pay Later (BNPL) payment methods for businesses, offering B2B companies innovative digital payment services and modern checkout solutions. We are to create a new standard for business payments and have made it our mission to simplify the purchasing experience for all businesses making it a tool for growth. Our solutions are based on proprietary, machine-learning-supported risk models, fully digitized processes and a highly scalable tech platform. This makes us a deep-tech company building financial products, not the other way around. We love building simple and elegant solutions and we strive for automation and scalability.

You will shape and manage our Information Security Management System and be an integral part of the Legal & Compliance team at Billie to foster Billie's compliance with applicable regulatory requirements in the area of Information Security. You will play a pivotal role in ensuring Billie’s compliance with the regulatory requirements with regards to risk management (MaRisk), supervisory requirements for IT in Financial Institutions (BAIT), and supervisory requirements for IT in Payment Service Providers and E-Money Institutes (ZAIT). You will take Information Security Management at Billie to the next level and closely cooperate with the CTO as well as the Senior Management Team. The role includes the following tasks: 

• Taking over responsibility as the Information Security Officer of Billie and ensuring Billie's compliance with applicable regulations and standards.
• Implementation, development, review and regular assessment for compliance and effectiveness of the Information Security Management System (ISMS) in compliance with the applicable regulatory requirements as well as market demands (including an information security strategy, roadmap, related policies, procedures, guidelines, and controls).
• Maintain an up-to-date and comprehensive knowledge of Billie's products, services, policies, procedures, philosophy, and organizational structure as well as IT infrastructure and utilized IT systems.
• Create goal-oriented solutions  with regard to existing information security targets.
• Assessing and monitoring Information Security Risks throughout Billie (regularly and on an ad-hoc basis) and recommending safeguards designed to keep information security risks at acceptable levels.
• Analyzing the protection requirements of IT systems utilised by Billie and maintaining, monitoring and regularly reviewing Billie’s Information Asset Register.
• Preparation as well as coordination of information security-related audits (i.e. serving as the main IT contact person for regulatory exams; documentation and leading efforts to remediate IT-related findings within appropriate timeframes).
• Supporting as well as improving existing ISMS processes such as: access control, security alerts, technical vulnerability assessment, outsourcing assessments, vendor assessments etc.
• First point of contact and escalation point for the whole company as well as third parties with regard to information security related questions, issues and incidents.
• Investigation and Reporting of Information security incidents as well as ensuring that appropriate processes for reporting, managing, analyzing, and escalating Information Security Incidents are in place.
• Ensure Information Security related controls remain effective and efficient.
• Preparation of regular reports on compliance with Billie’s information security to the Management Board (including KPIs, measures, projects and initiatives).
• Providing documentation and information about Information Security related topics to Billie's employees to raise and uphold awareness of the importance of Information Security.
• Preparation and performance of internal training, presentations and workshops on Information Security. 
• Supporting the preparation and updating of the contingency plan with regard to information security issues.

• At least three years of relevant experience within the information security sector (preferably in the role as Information Security Officer in a company comparable to Billie or bigger).
• Sound knowledge in the field of Information Security and Information Security Management as well as in-depth knowledge of relevant regulations (§ 25 a KWG, BAIT/ZAIT, MaRisk, etc.) and standards (ISO 2700X, ITIL, IT-Grundschutz, SOGP, COBIT, etc.).
• Strong motivation, enthusiasm and affinity for information security, IAM and risk management.
• Enough technical competence to understand relevant concepts and support ongoing project and technology efforts.
• Structured, analytical, conceptual, calm, diligent and solution-oriented.
• Strong project management and self-organizational skills and experience in leading small teams.
• Ability to manage relationships with vendors which provide information security-related services.
• Keen perception as well as the ability to understand and explain complex topics.
• Professional certifications in audit (e.g. ISO 27001, SOC 2).
• Fluent written and spoken English and German.
• Strong communication and teamwork skills as well as commitment and flexibility round off your profile.

Nice to have: 

• Knowledge in the field of software development.
• Familiarity with security concepts in cloud environments (e.g. AWS).
• Knowledge of penetration testing, ethical hacking, bug bounty programs.

• Flexible work hours and trust in your ability to deliver, empowering you to take control of your work-life balance
• Hybrid working approach enabling a good balance working from home and the office
• One of the best Virtual Shares Incentive Programs in the market, so that everyone at Billie is invested in our success
• Our “Catch a Ride with Billie” program, that enables discounted access to Berlin Public Transport (BVG)
• A yearly development budget to broaden your skill set and horizons
• Free German group classes
• An English-speaking, multicultural team with more than 46 nationalities
• Great office space at Checkpoint Charlie with free gym access, barista coffee, drinks and more

Billie offers you the opportunity to be a part of one of the fastest-growing Fintech startups in Europe following the mission to innovate to create new freedom for businesses of all sizes. Our combined decades of experience in B2B Financing and Payments in a market thirsty for innovation and change make this a fantastic possibility to get into the most dynamic space in tech.

Join an international team of talented, passionate people where drive and merit matter. We work in nimble, cross-functional teams with open communication lines across the company. You’ll be surrounded by smart people from a wide variety of backgrounds from which you can learn and that want to learn from you.

Are you ready to join Billie?

Billie is proud to be an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive environment in our workplace. By embracing talents and abilities of all kinds, we aim to boost motivation and team creativity. We do not discriminate on the basis of race, religion, national origin, age, marital status, gender, political views, beliefs, sexual orientation, color, disability status, or any other demographic factors.