• play a key role in overseeing the bank's ICT risks. You will ensure that relevant ICT risks are identified, assessed, and coordinate at an early stage.

Showcase your expertise and expand your skills by taking responsibility for the following 2nd Line of Defense tasks:

• Coordination of “Hot Spot” topics in the ICT or cyber environment to identify, assess, and mitigate ICT risks.
• Developing actionable recommendations to control and minimize ICT risks.
• Conducting problem management and lessons learned for specific “Hot Spot” topics, including creating mitigation actions (and controls) and ensuring their implementation.
• Initiating escalations to management in cases of significant ICT risks.
• Continuously monitoring the ICT risk landscape.
• Preparing reports on risks, mitigation measures, and their effectiveness, and communicating these to management and relevant stakeholders for decision-making and planning purposes.
• Responding to inquiries regarding ICT risks, including those from the ECB or external auditors.
• Further developing our formal written guidelines regarding ICT risk management.

• A university degree in Information Systems, Informatics, or a comparable field, with Business Administration as an added advantage.
• Significant experience and specialized knowledge in (digital) operational resilience and ICT risk processes across the 1st, 2nd, or 3rd Line of Defense.
• Strong analytical abilities to deconstruct complex challenges into manageable components and to synthesize intricate information into clear, concise, and well-structured communications suitable for technical and non-technical audiences alike.
• Familiarity with key legal and regulatory requirements regarding information security (including DORA), along with proven experience in implementing operational resilience concepts within financial institutions.
• The capability to remain composed and focused under tight time constraints, handling tasks pragmatically and efficiently.
• A proactive mindset, openness to addressing critical issues, and the ability to work collaboratively in developing and implementing constructive solutions within a team setting.
• Preferred expertise in leading information security and IT security frameworks, such as CISSP, CISM, ISO 27001, or ICT DORA Risk Manager certification.
• Excellent communication and documentation skills in English, with German being an added advantage.

30 days of vacation; Employer-funded pension; Flexible work; Employee conditions; Digital learning; Diversity; Family & job friendly; Friendly work environment; Inspiring company culture; Work-life balance

Commerzbank has been present in the Czech Republic with a branch in Prague since 1992. Decades of experience combined with the world class know-how and skills of our employees enabled the Prague branch to become the second largest Commerzbank international hub globally, providing extensive services to Commerzbank worldwide, especially in IT, Finance, Risk Control, Credit Risk management, Human Resources and Procurement. In Commerzbank you will find yourself supported by a team of nearly 1,000 colleagues locally and over 30,000 co-workers globally, located in more than 40 countries, with diverse talents and backgrounds. We are an equal opportunity employer that strives to enhance our product offering by hiring individuals driven to create a positive impact in the banking world. 

In case of interest please apply via this job portal.