Information Security and Resilience Risk Manager(m/w/x)

# Information Security and Resilience Risk Manager– Vienna, Austria **AUT - Vienna** | **Full time** **Information Security and Resilience Risk Manager– Vienna, Austria** Are you ready to take ownership of a high-impact cybersecurity and risk function in a global financial institution? Do you want to lead the oversight of DORA (Digital Operational Resilience Act) execution while influencing senior leadership and regulatory bodies? Join Western Union as an Information Security and Resilience Risk Manager and be the trusted expert guiding our European operations through today’s complex technology risk and cybersecurity landscape. In this high-impact, standalone role, you will take full ownership of establishing and overseeing a robust information security and resilience framework in alignment with European regulatory requirements (including PSD2, EBA Guidelines and DORA) and industry best practices such as ISO 27001, NIST and ITIL. You will be the driving force behind Western Union’s DORA readiness and implementation, acting as the key liaison with regulators while collaborating cross-functionally with global stakeholders across IT, Risk, Legal, and Compliance to ensure enterprise-wide alignment and execution. **Role Responsibilities** * Own and lead DORA implementation efforts, including assessment of current gaps, process redesign, and rollout of compliant controls. * Serve as the formal representative to the Austrian Financial Market Authority (FMA) for cybersecurity and resilience matters. * Ensure compliance with a range of European cybersecurity regulations (DORA, PSD2, GDPR) and frameworks (ISO 27001, NIST). * Coordinate with outsourced technology and cybersecurity vendors to monitor performance, risk controls, and incident escalation. * Conduct COBIT-aligned IT audits, identify control gaps, and design remediation strategies. * Influence and advise senior stakeholders, including presenting cybersecurity risks and resilience posture to the executive team and board. * Coordinate reporting, documentation, and evidence management for all regulatory and audit requirements. * Actively participate in operational risk and IT governance meetings as the key subject matter expert. **Role Requirements:** * Proven experience in a senior IT security or risk management role, ideally within — ideally financial or professional services (big4 – preferably. * Minimum of 5 years of hands-on experience in IT Security, IT Risk Management, or IT Audit within banking, financial services, or consulting environments. * Demonstrated experience managing and overseeing outsourced IT or cybersecurity services, including SLAs, KPIs, and third-party risk controls. * Practical experience in designing, implementing, and auditing COBIT control frameworks. * Strong understanding of DORA (Digital Operational Resilience Act), with proven involvement in DORA compliance programs or readiness initiatives. * Adept at navigating cross-functional, multicultural, multinational, and matrixed organizations. * Experience preparing and delivering board-level presentations and strategic risk updates. * Exposure to digital banking environments is desirable, though not essential. * Recognized industry certifications such as CISM, CISSP, CRISC, or equivalent. * Comprehensive knowledge of key EU ICT risk and cybersecurity regulations and frameworks, including ISO 27001, NIST, PSD2, and DORA. * Strong analytical and structured thinking, with the ability to interpret complex issues and propose practical solutions. * Calm, confident, and persuasive communicator who can influence without authority. * Persistent and solution-focused problem-solver, capable of driving change in dynamic, high-pressure environments. * Highly collaborative team player, with strong interpersonal skills and the ability to work across organizational boundaries. * Skilled in translating operational detail into strategic insights to support executive-level decision-making. * Fluent in English (mandatory); German language skills are a strong plus. **Salary** We are under legal obligation to indicate the minimum salary, which is EUR 65 000 gross per year for this position. However, our attractive compensation packages follow current market salaries and can therefore be significantly above the indicated minimum salary. **Benefits** You will also have access to short-term incentives, multiple health insurance options, accident and life insurance, and access to best-in-class development platforms, to name a few. Your Austria specific benefits include: * Comprehensive life & medical cover * Contributory pension plan * Luncheon vouchers * Other partner discounts Western Union values in-person collaboration, learning, and ideation whenever possible. We believe this creates value through common ways of working and supports the execution of enterprise objectives which will ultimately help us achieve our strategic goals. By connecting face-to-face, we are better able to learn from our peers, problem-solve together, and innovate. Our Hybrid Work Model categorizes each role into one of three categories. Western Union has determined the category of this role to be Hybrid. This is defined as a flexible working arrangement that enables employees to divide their time between working from home and working from an office location. **The expectation is to work from the office a minimum of three days a week.** We are passionate about diversity. Our commitment is to provide an inclusive culture that celebrates the unique backgrounds and perspectives of our global teams while reflecting the communities we serve. We do not discriminate based on race, colour, national origin, religion, political affiliation, sex (including pregnancy), sexual orientation, gender identity, age, disability, marital status, or veteran status. The company will provide accommodation to applicants, including those with disabilities, during the recruitment process, following applicable laws. # LI-NI1 # LI-Hybrid Estimated Job Posting End Date: 07-30-2025 This application window is a good-faith estimate of the time that this posting will remain open. This posting will be promptly updated if the deadline is extended or the role is filled.