Our client is a global fintech and payments technology company that develops and operates a large-scale payment platform used by businesses worldwide to process and manage transactions securely and efficiently.
We are currently looking for an experienced Global Technology Risk Manager to join their growing team in Sofia. This role plays a key part in overseeing ICT, technology, and cyber risks across the organisation and ensuring alignment with international regulatory standards.
The position is part of the second line of defence (2LoD) and works closely with technology, security, and risk teams across multiple international locations.
Key Responsibilities:
ICT Risk Framework & Governance
- Support the development and maintenance of the ICT Risk Management Framework.
- Maintain the ICT risk taxonomy and ensure proper representation in the enterprise risk register.
- Align ICT risks with enterprise risk appetite and escalation thresholds.
- Contribute to board and executive reporting on technology and cyber risks.
IT General Controls (ITGC) Testing
- Develop and execute structured ITGC testing programmes.
- Perform independent testing of technology controls (design and operating effectiveness).
- Document findings, control deficiencies, and improvement recommendations.
- Report control effectiveness to senior management and risk committees.
Technology Change Risk Assessments
- Conduct independent Delivered Risk Assessments related to technology initiatives.
- Evaluate control design, security implications, and resilience considerations.
- Provide a structured challenge to the technology and project stakeholders.
ICT Incident & Resilience Oversight
- Participate in governance oversight of major ICT incidents.
- Review root cause analysis and remediation actions.
ICT Third-Party Risk Oversight
- Oversee risk management for critical technology vendors and service providers.
- Review ICT outsourcing arrangements and control coverage.
- Assess concentration and dependency risks.
Requirements:
- Proven experience in ICT Risk, Technology Risk, Cyber Risk, IT Assurance, or IT Controls.
- Strong experience performing IT General Controls (ITGC) testing.
- Experience conducting technology risk assessments for system or infrastructure changes.
- Experience working in regulated environments (financial services, fintech, payments, banking, or similar sectors).
- Ability to communicate complex technology risks to both technical and non-technical stakeholders.
- Strong documentation, analytical, and governance skills.
- Excellent English communication skills.
What the company offers:
- Hybrid working model in Sofia (2 days from the office).
- Competitive compensation and an annual bonus scheme.
- Comprehensive benefits package including additional annual leave, health insurance, and wellbeing programs.
- Opportunity to work in a global fintech environment with international teams across Europe and Australia.
- Exposure to complex technology risk, regulatory frameworks, and large-scale payment systems.
This is a great opportunity to become part of a high-impact global technology and risk function within a fast-growing fintech environment, working on complex payment platforms and collaborating with international teams across multiple regions.
If you are passionate about technology risk, regulatory environments, and ensuring the resilience and security of critical systems, we would be happy to hear from you.
Apply now and take the next step in your career.
All applications will be treated as strictly confidential.
Only short-listed candidates will be contacted.
License for recruitment for Bulgaria: № 2399 / 15.11.2017
License for administration and protection of personal data: № 432025 / 23.10.2017
