Paysafe Limited (“Paysafe”) (NYSE: PSFE) (PSFE.WS) is a leading payments platform with an extensive track record of serving merchants and consumers in the global entertainment sectors. Its core purpose is to enable businesses and consumers to connect and transact seamlessly through industry-leading capabilities in payment processing, digital wallet, and online cash solutions. With over 25 years of online payment experience, an annualized transactional volume of $140 billion in 2023, and approximately 3,200 employees located in 12+ countries, Paysafe connects businesses and consumers across 260 payment types in over 40 currencies around the world. Delivered through an integrated platform, Paysafe solutions are geared toward mobile-initiated transactions, real-time analytics and the convergence between brick-and-mortar and online payments.

The IT & Infosec Compliance Manager is an important role within the IT, Information Security and Operations Governance Risk and Compliance function of Paysafe whose primary role is to maintain and mature the organisation’s IT & Information Security Third Party Risk Management Program.

In this role, you will promote a “risk and control aware” culture in regard to third-party suppliers and be responsible for the identification, analysis, evaluation, reporting, and monitoring of IT, Information Security, and Operational Resilience risks posed to the organisation by its third-party suppliers. You will also develop and maintain related risk management processes in collaboration with relevant stakeholders. In addition, you will support and assist the business and operational colleagues by providing guidance on regulatory and statutory obligations regarding third-party supply-chain IT, information security and operational resilience matters.

What to expect:

In regard to IT, Information Security, and Operational Resilience Risk Management, you shall:

• Drive the development of risk management processes and procedures, including the development of workflows, runbooks, questionnaires, etc., in alignment with the organisation’s Enterprise Risk Management framework.
• Implement and maintain the IT, Information Security, and Operational Resilience third-party risk management process.
• Conduct thorough risk assessments to identify risks and provide advice and oversight of measures necessary to mitigate such risks.
• Generate comprehensive reports on risk assessments and maintain accurate documentation.
• Work with colleagues and third-party suppliers to ensure risks are suitably mitigated.
• Collaborate with, and draw on the expertise of, relevant IT, Information Security, and Operational Resilience colleagues to ensure the comprehensive review and mitigation of risks in undertaken.
• Develop, maintain, and report relevant KPI’s & KRI’s regarding third-party supplier risks, and prepare and deliver regular management reporting.
• Ensure third-party suppliers adhere to relevant IT, security and operational resilience requirements and regulations through continuous monitoring.
• Review and maintain third-party risk policies and associated documents.
• Maintain and promote relevant contractual terms to be applied by third-party suppliers.
• Review third-party agreements to ensure relevant requirements are covered, including identified concerns.
• Ensure that relevant regulatory & industry requirements are identified, evaluated, and embedded into the third-party risk management process.
• Develop and deliver communications and training programs to enhance third-party security awareness for both internal stakeholders and third-party suppliers.
• Drive improvement of third-party risk management tools by evaluating the existing process and usage and ensure proper implementation.
• Define and implement monitoring activities to identify process gaps and recommend improvement steps.
• Provide guidance to colleagues regarding relevant contractual terms, requirements, questionnaires, etc., for IT, Information Security, and Operational Resilience.
• Cooperate with Risk & Audit teams by aligning and coordinating processes, as required.

To be successful you need to have:

• Bachelor’s level degree in information technology or other relevant discipline.
• 5+ years of experience in Risk Management functions with a focus on technology risk.
• Recognized and active certifications such as CISSP, CompTIA Security+ or similar.
• A working knowledge of frameworks such as NIST CSF, ISO27001 and PCI DSS is desirable.
• Highly motivated individual with excellent problem-solving skills and the ability to prioritize shifting workloads in a rapidly changing organization and industry.
• An effective communicator and a confident team player and a genuine passion to make things happen in a dynamic organization.
• Excellent verbal, written, and interpersonal communication skills.
• Strong background in IT, Information Security, and Operational Resilience governance and risk management.
• Practical experience in configuring and utilizing third-party risk management tools advantageous.
• Capability to build strong professional networks and relationships. Ability to influence positive outcomes.
• Identifying and highlighting deviations from expected controls and reporting lack of adherence.

We offer in return:

• The opportunity to write the history of a leading and growing multinational company
• Tailor-made training and ongoing development to help you enhance your skills in the field of online payments
• Multiple career progression opportunities in a dynamic in-house business
• Environment where product expertise, professional and personal commitment are rewarded
• Competitive remuneration and social benefits package (25 days annual paid leave, health insurance, sports card, team events, company discounts, variety of soft skills, business and technical training programs)
• Fun and collaborative working atmosphere
• Flexible working model - we encourage our employees to embrace our flexible working approach. You will be expected to work from home and spend an average of three days a week at our Sofia office as part of our hybrid work model.

With offices in USA, EU, and the UK, Paysafe offers individuals an opportunity to join a fast-moving global company with energy, passion and drive, committed to developing world-class online financial solutions.

We take pride in our employees and offer excellent remuneration and benefits, as well as a positive, rewarding and fun work environment.

Are you ready to take your career to the next level? Join our team that is inspired by a unified vision and propelled by passion.

Send your CV in English.

Only shortlisted candidates will be contacted for an interview.

Wondering how our interview process looks like now? Learn more here: https://bit.ly/paysafeinterviews

Equal Employment Opportunity

Paysafe provides equal employment opportunities to all employees, and applicants for employment, and prohibits discrimination of any type with regard to ethnicity, religion, age, sex, national origin, disability status, sexual orientation, gender identity or expression, or any other protected characteristics. This policy applies to all terms and conditions of recruitment and employment. If you need any reasonable adjustments please let us know. We will be happy to help and look forward to hearing from you.