Berlin

Please apply here on „ITbbb.de“ with the „Apply Now“ link/button at the top right.

If you’re a customer of the largest digital bank in the EU, then you’ve probably interacted with our platform and didn't even know it! We are Mambu - SaaS FinTech Unicorn on a mission to revolutionise financial services globally. Your reward if you will join us? A (code) mark on a product used by millions of people!

Meet your team:

In this position you will play an individual contributor role, however, on daily basis you will work closely with Product Engineering and Site Reliability Engineering teams as well as the Head of Technical Audit and Assurance. 
How you will contribute:
  • Own internal technical audit roadmap - lead scheduling, walkthroughs, and testing of key IT systems, applications, and processes against company security controls & requirements and industry recognized frameworks like ISO 27001, SOC 1 and SOC 2 requirements.
  • Formulate well-documented, clear, and thorough audit reports with recommended remediation actions. Ensure all findings are recorded. 
  • Assist internal stakeholders in the prioritization and realization of remediation efforts of audit findings and monitor progress. 
  • Prepare internal teams for external certification & assurance audits including  ISO 27001, SOC 1 and SOC.
  • Coordinate audit workshops, evidence gatherings and ensure audit findings are immediately timely. 
  • Support Mambu Customers to gain trusts in Mambu’s control framework and Assurance Programs by supporting customer due diligence and audit requests.  
You’re equipped with:
  • 3+ years experience working in an IT or information security auditor or analyst/engineer role;
  • A strong technical background, preferably technology audit skills, including understanding of  product development, SaaS or Cloud environments and platform infrastructure like APIs.
  • Ability to document and express system and control deficiencies in a risk-based context
  • Strong written and verbal communication skills in English
  • Analytical, detail oriented and creative problem-solving abilities
  • Good organisational skills to manage changing priorities and ensure all tasks get addressed and expectations are met
  • Proactive mindset with a drive to find and address root causes e.g. 5 Whys analysis
  • Able to work autonomously, both alone and in teams

  • It would be great if you also had:
  • Knowledge of industry-standard and best practices NIST CSF, ISO 27001, SOC 2, SOC 1, PCI-DSS, and others.
  • The proof of professional certification is a big plus. 
  • Previously worked in an IT, SaaS or cloud provider as an internal auditor, compliance officer, technical program manager.
  • Experience in performing risk assessment workshops, analysed those risks, produced a plan to mitigate them and helped deliver those changes.
Why Mambu:
  • We are a diverse group of Mambuvians, and we are growing fast across 30 countries and 6 continents (not enough banks on Antarctica!). Our eyes are on the future, and we believe we can achieve our mission together by working agile, harnessing the latest technology and having a positive impact for future generations by improving the environment we are in.
  • Mambuvians own their career growth, but we like to celebrate our successes together. We’ve got your back on your health, body and mind. Whether it’s our flexible hours or locations, or our 4-day work week over a 3 month period. You work 4 days a week, but get paid for 5!
As a member of the Berlin office location team, you will have access to:
  • Corporate pension Wellbeing: discount on Sports club membership (Urban Sports Club); therapeutic massage
  • Lunch subsidy of €5 per day and company discount in many places around the office 
  • Fully subsidized public transport ticket / fully subsidized bicycle
  • In the office: massage chair, soft drinks, fruit, nuts & snacks
  • Training & development personal budget 
Auditor, (IS), Englisch, Audit, SaaS, ISO, System-Administrator, ITbbb.de, Empfehlungsbund