Security Engineer

• Operate as part of the Second Line of Defence (2LOD), providing independent oversight and challenge on information security controls, focusing on governance, regulatory alignment, risk management and reporting
• Responsible for filling TPSA’s Information security returns to the CSSF and responding to enquiries; keep abreast of regulatory requirements and reporting obligations including Tech and Cyber, DORA, IT Incident management
• Interact with Tide’s third party stakeholders in Europe such as partners and regulators on behalf of Tide Risk & Compliance Luxembourg
• Define information security standards specific to Tide Platform SA operations, aligned with the global ISMS
• Act as a thought leader for local information security requirements
• Manage information security risk in accordance with Tide’s Global Risk Management Framework and CSSF Articles regulatory requirements
• Manage Tide’s global ISMS with focus on people, process and technology controls in Luxembourg
• Implement real-time compliance monitoring and risk management processes using modern GRC tooling and automation
• Ensure alignment with information security control frameworks (ISO 27001, NIST, NIS2, DORA)
• Conduct local information security risk assessments and control oversight and drive best practices globally
• Work with 1LOD stakeholders to deliver information security risk treatment plans
• Define and measure key risk indicators and interpret data from information security tooling to develop insightful risk reporting
• Facilitate external audit requirements in Europe and support technology-related audits, coordinating and collating records, policies and documents for security and IT resilience topics
• Reinforce a strong security culture and awareness throughout the business
• Prepare and present regular reports on security posture, risk status, and compliance efforts to Tide Platform SA senior leadership, risk committees, key partners and regulatory bodies
• Ensure Tide’s compliance with applicable EU and Luxembourg regulatory requirements and monitor regulatory developments

Information Security Risk Lead

Business Unit Security Officer

Cloud Security Architecture Lead

Senior Software Engineer – Embedded Software, Security

Field Marketing Manager

Information Systems Security Manager