LOG IN
SIGN UP
Tech Job Finder - Find Software, Technology Sales and Product Manager Jobs.
Sign In
OR continue with e-mail and password
E-mail address
Password
Don't have an account?
Reset password
Join Tech Job Finder
OR continue with e-mail and password
E-mail address
First name
Last name
Username
Password
Confirm Password
How did you hear about us?
By signing up, you agree to our Terms & Conditions and Privacy Policy.

Welcome to the team: ICT-Auditor for 2nd Line of Defence (m/f/diverse)

at Commerzbank

AI-Generated Resumes
Improve/bulletproof your resume against common mistakes or generate a new one, with our in-house AI trained on 100s of ex-intern and graduate CVs
SUBSCRIBE NOW
Back to all Cybersecurity jobs
Apply now
Commerzbank logo
Investment Banking

Welcome to the team: ICT-Auditor for 2nd Line of Defence (m/f/diverse)

at Commerzbank

JuniorNo visa sponsorshipCybersecurity

Posted a month ago

No clicks

Compensation
Not specified

Currency: Not specified

City
Prague
Country
Czech Republic

Join Group Risk Management – Cyber Risk & Information Security as an ICT Auditor in the 2nd Line of Defence, supporting a new team in Prague. You will perform independent ICT audits, identify and assess risks, ensure compliance with legal, regulatory (e.g. DORA) and internal standards, and report findings with recommended mitigation measures. The role can operate as auditor or audit lead, applying agile and classic project management approaches while contributing to data analysis, continuous auditing and audit approach development.

Group Risk Management – Cyber Risk & Information Security (GRM-CRIS) is responsible for the group-wide management of cyber and information security risks. It ensures an adequate level of (cyber) security in Commerzbank through clearly defined roles and responsibilities within the security organization. GRM-CRIS serves as the "second line of defence" (2nd LoD) for information security. This involves setting relevant standards by establishing controls within guidelines and policies and checking for compliance. Additionally, GRM-CRIS reports on cyber and information security risks, accompanies the risk mitigation process, makes decisions, and escalates issues when necessary.

We are now establishing a new team in Prague and looking for ICT Auditors to support our 2nd LoD. As an ICT Auditor in GRM-CRIS, you will help strengthen our security by performing independent audits, identifying risks, and ensuring compliance with all legal, regulatory, and internal standards. Your knowledge of information security and IT risk management will ensure a resilient ICT environment aligned with regulatory (e.g. Digital Operational Resilience Act (DORA)) and internal standards.

Your tasks

  • Participate in the audit team of the 2nd Line of Defence for ICT controls of Commerzbank in Group Risk Management – Cyber Risk & Information Security.
  • Conduct independent audits of ICT-related matters, identify risks, assess their relevance and derive risk mitigating measures. Ensure compliance with legal, regulatory, and internal requirements. Summarize your results clearly in audit reports for the responsible divisional head.
  • Apply both agile and classic project management methods to execute audit assignments successfully. Depending on your experience, take on the role of auditor or audit lead within the team.
  • Show strong initiative and contribute to a versatile, motivated team. Take responsibility for additional professional topics, further develop audit approaches, or drive topics such as data analysis and continuous auditing.

Your profile

  • Completed degree with a focus on computer science or business informatics, or completed vocational training in the IT field or commercial, business or technical training.
  • Understanding of internal banking, legal, and regulatory requirements (e.g., MaRisk, IT Security Act, BAIT, NIST, DORA, ISO/IEC 27001) combined with relevant IT knowledge of banking systems in relation to information security.
  • At least 2 years of experience conducting IT/ICT audits – alternatively, experience as an ISMS/ISO 27001 auditor.
  • Experience with data analysis, agile working methods, project management skills, and bank related digitalization processes.
  • Additional qualifications e.g., CISA, CISM, CISSP, ISO/IEC 27001 Lead Auditor are a plus.
  • Excellent communication skills in English written and spoken. German skills are an asset.

Our Benefits

30 days of vacation; Employer-funded pension; Flexible work; Employee conditions; Digital learning; Diversity; Family & job friendly; Friendly work environment; Inspiring company culture; Work-life balance

Bookmark job ad
Print job ad
Share job ad

The company

In Commerzbank Digital Technology Centre Prague, we are transforming a traditional bank into a digital agile enterprise! We provide a wide range of various IT solutions, .Net and Java development, services in the area of application operation and infrastructure. As a part of Commerzbank Group, we work closely together with the Delivery Organisation of more than 50 different Clusters in our Headquarter in Frankfurt and around the globe.

We are looking for thinkers with unconventional ideas and in return, we offer the freedom to create own job with own vision, wide range of benefits including home office. Sounds interesting?

Contact

In Commerzbank Digital Technology Centre Prague, we are transforming a traditional bank into a digital agile enterprise! We provide a wide range of various IT solutions, .Net and Java development, services in the area of application operation and infrastructure. As a part of Commerzbank Group, we work closely together with the Delivery Organisation of more than 50 different Clusters in our Headquarter in Frankfurt and around the globe.

We are looking for thinkers with unconventional ideas and in return, we offer the freedom to create own job with own vision, wide range of benefits including home office. Sounds interesting?

Welcome to the team: ICT-Auditor for 2nd Line of Defence (m/f/diverse)

at Commerzbank

AI-Generated Cover Letters
Generate cover letter drafts & save time with our in-house AI trained on 100s of intern and graduate cover letters
SUBSCRIBE NOW
Back to all Cybersecurity jobs
Apply now
Commerzbank logo
Investment Banking

Welcome to the team: ICT-Auditor for 2nd Line of Defence (m/f/diverse)

at Commerzbank

JuniorNo visa sponsorshipCybersecurity

Posted a month ago

No clicks

Compensation
Not specified

Currency: Not specified

City
Prague
Country
Czech Republic

Join Group Risk Management – Cyber Risk & Information Security as an ICT Auditor in the 2nd Line of Defence, supporting a new team in Prague. You will perform independent ICT audits, identify and assess risks, ensure compliance with legal, regulatory (e.g. DORA) and internal standards, and report findings with recommended mitigation measures. The role can operate as auditor or audit lead, applying agile and classic project management approaches while contributing to data analysis, continuous auditing and audit approach development.

Group Risk Management – Cyber Risk & Information Security (GRM-CRIS) is responsible for the group-wide management of cyber and information security risks. It ensures an adequate level of (cyber) security in Commerzbank through clearly defined roles and responsibilities within the security organization. GRM-CRIS serves as the "second line of defence" (2nd LoD) for information security. This involves setting relevant standards by establishing controls within guidelines and policies and checking for compliance. Additionally, GRM-CRIS reports on cyber and information security risks, accompanies the risk mitigation process, makes decisions, and escalates issues when necessary.

We are now establishing a new team in Prague and looking for ICT Auditors to support our 2nd LoD. As an ICT Auditor in GRM-CRIS, you will help strengthen our security by performing independent audits, identifying risks, and ensuring compliance with all legal, regulatory, and internal standards. Your knowledge of information security and IT risk management will ensure a resilient ICT environment aligned with regulatory (e.g. Digital Operational Resilience Act (DORA)) and internal standards.

Your tasks

  • Participate in the audit team of the 2nd Line of Defence for ICT controls of Commerzbank in Group Risk Management – Cyber Risk & Information Security.
  • Conduct independent audits of ICT-related matters, identify risks, assess their relevance and derive risk mitigating measures. Ensure compliance with legal, regulatory, and internal requirements. Summarize your results clearly in audit reports for the responsible divisional head.
  • Apply both agile and classic project management methods to execute audit assignments successfully. Depending on your experience, take on the role of auditor or audit lead within the team.
  • Show strong initiative and contribute to a versatile, motivated team. Take responsibility for additional professional topics, further develop audit approaches, or drive topics such as data analysis and continuous auditing.

Your profile

  • Completed degree with a focus on computer science or business informatics, or completed vocational training in the IT field or commercial, business or technical training.
  • Understanding of internal banking, legal, and regulatory requirements (e.g., MaRisk, IT Security Act, BAIT, NIST, DORA, ISO/IEC 27001) combined with relevant IT knowledge of banking systems in relation to information security.
  • At least 2 years of experience conducting IT/ICT audits – alternatively, experience as an ISMS/ISO 27001 auditor.
  • Experience with data analysis, agile working methods, project management skills, and bank related digitalization processes.
  • Additional qualifications e.g., CISA, CISM, CISSP, ISO/IEC 27001 Lead Auditor are a plus.
  • Excellent communication skills in English written and spoken. German skills are an asset.

Our Benefits

30 days of vacation; Employer-funded pension; Flexible work; Employee conditions; Digital learning; Diversity; Family & job friendly; Friendly work environment; Inspiring company culture; Work-life balance

Bookmark job ad
Print job ad
Share job ad

The company

In Commerzbank Digital Technology Centre Prague, we are transforming a traditional bank into a digital agile enterprise! We provide a wide range of various IT solutions, .Net and Java development, services in the area of application operation and infrastructure. As a part of Commerzbank Group, we work closely together with the Delivery Organisation of more than 50 different Clusters in our Headquarter in Frankfurt and around the globe.

We are looking for thinkers with unconventional ideas and in return, we offer the freedom to create own job with own vision, wide range of benefits including home office. Sounds interesting?

Contact

In Commerzbank Digital Technology Centre Prague, we are transforming a traditional bank into a digital agile enterprise! We provide a wide range of various IT solutions, .Net and Java development, services in the area of application operation and infrastructure. As a part of Commerzbank Group, we work closely together with the Delivery Organisation of more than 50 different Clusters in our Headquarter in Frankfurt and around the globe.

We are looking for thinkers with unconventional ideas and in return, we offer the freedom to create own job with own vision, wide range of benefits including home office. Sounds interesting?

SIMILAR OPPORTUNITIES

Commerzbank logo

Welcome to the team: Specialist in ICT Risk Management (m/f/diverse)

Commerzbank

Added 30 days ago
Handelsbanken logo

Willkommen im Team: Cyber Threat Detection and Response Platform Engineer (m/w/divers)

Handelsbanken

Added 32 days ago
Deutsche Bank logo

Information Security Senior Specialist (f/m/x)

Deutsche Bank

Added 37 days ago
Boston Consulting Group logo

Senior Consultant Cybersecurity (all genders) - BCG Platinion

Boston Consulting Group

Added 36 days ago
Nomura logo

Deputy ICT Risk & Information Security Officer - Vice President

Nomura

Added 37 days ago
© 2026 Tech Job Finder. All Rights Reserved.
LinkedIn
Instagram
Facebook
Tech Job Finder
LinkedIn
Instagram
Facebook
© 2026 Tech Job Finder. All Rights Reserved.