About Company
Bitpanda is on a mission to reinvent the world of finance and bring investing closer to everyone, everywhere. Today’s financial ecosystem is complex, exclusive and expensive, and we’re here to change this as the #1 investment platform in Europe and beyond. Our platform is rooted in the belief that investing should be safe, easy and accessible to all. With Bitpanda, everyone has the freedom and flexibility to invest in what they believe in — commission-free stocks, cryptocurrencies or even precious metals — starting from as little as $1.
Job Description
Summary
Join our team as a dynamic Risk Leader, driving oversight of Information, Communication, and Technology (ICT) and data-related activities that are the backbone of Bitpanda’s products, services, and market interactions. In this critical role, you will challenge, control, report, and advise on risks associated with Bitpanda’s technology infrastructure, systems, and services. Your expertise will ensure that our technology, software, and infrastructure remain robust, compliant, and aligned with Bitpanda’s ambitious growth trajectory.
Reporting directly to the Head of Operational Risk Management, you will be a key member of Bitpanda’s expanding Group Risk Management Team, playing a pivotal role in shaping the future of our risk management framework.
What you’ll do:
- Lead the oversight of technology and data-related risks, including infrastructure, software development, and service availability risks, ensuring alignment with Bitpanda’s Risk Management Framework.
- Collaborate with the CISO team on software development governance, architecture, and roadmap planning.
- Support system and business owners in building resilience mechanisms for critical systems and functions, ensuring compliance with DORA requirements, in partnership with Business Continuity Management.
- Act as the point of contact for technology teams to identify, treat, monitor, and report technology and data-related risks.
- Coordinate risk and control assessments, monitor controls (including testing), oversee incidents, participate in audits, and align ICT Risk governance with organizational objectives.
Who you are:
- 5–10 years of experience in financial services or fintech, managing ICT risks and controls, with expertise in non-financial risk management frameworks (e.g., RCAs, Control Monitoring, Risk Appetite, Incident & Crisis Management, and BCM).
- Strong communication skills with the ability to simplify complex topics into clear, actionable insights and visualizations to support decision-making.
- In-depth knowledge of regulatory requirements for financial services and fintech (e.g., DORA) and expertise in technology aspects, including cloud services, data centers, ICT governance, and software development lifecycles.
- Familiarity with technology risks and controls, particularly software development risks, engineering standards, and IT systems such as payment, trading, and custody processes, along with third-party vendor management.
- Self-starter with leadership capabilities, able to integrate control frameworks across the organization, embed efficient risk-management practices, and adapt in dynamic environments; certifications like CRISC®, CGEIT®, COBIT, or ITIL are a plus.
Skills
- Leadership
- Operations
- Risk Analysis
- Team Collaboration
