At the Boerse Stuttgart Group, we are the sixth-largest stock exchange group in Europe with strategic pillars in the capital markets business as well as in the digital and crypto business. In the capital markets sector, we operate stock exchanges in Germany, Sweden, and Switzerland, and CATS, a European over-the-counter trading network. The group also includes EUWAX AG, an internationally active broker.
Pioneers #Disruption #Blockchain #Tokenized Assets #Europe. Are you interested in these terms? Then you’ve come to the right place. The Stuttgart Stock Exchange Group aims to revolutionize existing capital markets and create an open, unified capital market union in Europe through the use of blockchain technology. With the newly founded fintech Seturion in Stuttgart and BX Digital in Zurich, we are developing an innovative, pan-European and future-proof solution for the capital market. We work at the nexus of traditional financial services and new blockchain technologies.

YOUR ROLE

As Senior Cyber Security Engineer, you will report directly to our CTO and build a holistic IT security function with equal focus on the confidentiality, integrity, and availability of data and IT systems, alongside the specific challenges of cybersecurity.
While the gradual build-up and leadership of the IT Security team is part of your responsibilities, we are looking for someone who does not see this primarily as a management role. Instead, you bring a hands-on IT security perspective based on solid experience as an engineer. You are not afraid to intervene in processes, enforce necessary adjustments, and take ownership of key security operations.
This role gives a passionate IT security leader the opportunity and authority to thrive in a technically challenging environment where your contribution is seen as absolutely critical to the company’s success.
Would you like to actively shape the digital future of a leading financial company? Then apply now and become part of our team! We look forward to receiving your application.

YOUR TASKS

• 
  IT security framework & policies: Implement and oversee the company’s IT security framework, define policies, standards, and key controls, and ensure they are applied consistently across all systems and processes.
• 
  Cybersecurity by design: Integrate security into every phase of the system development life cycle (SecDevOps), ensuring security is a core element of product and platform design.
• 
  Risk & compliance management: Continuously evaluate the company’s IT risk posture, conduct risk analyses, and ensure compliance with relevant regulations and industry standards (e.g., DORA, BAIT).
• 
  Business continuity: Manage business continuity planning and disaster recovery, ensuring resilience of critical systems.
• 
  Operational security responsibilities: Take ownership of access management, monitoring of security-critical systems, and other high-trust security tasks.
• 
  Certifications & audits: Lead IT security certification initiatives and support audits with internal and external stakeholders.
• 
  Incident response: Direct incident management and crisis response, coordinating immediate actions and long-term remediation.
• 
  Culture & awareness: Drive cybersecurity awareness and training programs, fostering a company-wide culture of strong security practices.
• 
  Ownership: Take ownership of IT security initiatives and align with group-wide policies, with the opportunity to build, mentor, and lead a high-performing team as the function grows.
• 
  External engagement: Represent the company on IT security topics in collaboration with partners, clients, auditors, and regulators.