Information Security Governance, Risk and Compliance Manager

On our path to becoming the world’s favorite way to shop, we’re assembling an unparalleled global talent network, accelerating individual careers, and disrupting entire industries. We are on a mission to liberate humanity from all the meaningless time spent managing their purchases and finances, so they can do more of what they love. We’re in search of global talent eager to embrace our atmosphere and defy their own expectations.

We are seeking an experienced and highly skilled Information Security Governance, Risk and Compliance Manager to join our teams at Klarna Financial Services UK (KFSUK)/Klarna.

As the Information Security Governance, Risk and Compliance Manager, you will be entrusted with a critical leadership role. Your primary responsibility will be to oversee and manage the information security function, ensuring that KFSUK's information security management system aligns with regulatory requirements, industry best practices, and the strategic objectives of Klarna Group. You will play a pivotal role in identifying, assessing, and mitigating IT and security risks. Your success in this role will depend on your strong leadership, strategic thinking, and exceptional communication skills, as you will collaborate closely with various Group functions, as well as internal and external stakeholders.

What you will get to do

•  Take charge of managing Information Security and IT compliance in the UK, ensuring the establishment of a comprehensive information security management system that is in harmony with KFSUK's objectives, regulatory mandates, and industry best practices.
• Collaborate with the Klarna Group Information Security teams to ensure the implementation of adequate security policies and controls in compliance with relevant regulatory requirements.
• Oversee the identification, assessment, monitoring, and reporting of IT and IS risks across the organization. Provide guidance and support to manage these risks effectively, including facilitating risk assessments and conducting independent follow-ups. Offer quarterly independent opinions on the IT and IS risk profile of the business to KFSUK senior management and the KFSUK Board.  
• Maintain various components of the IT and IS compliance framework and other ISMS documentation. Measure the effectiveness of controls and assess their implementation within the business. 
• Act as the company's representative in IT and IS risk-related matters when engaging with regulators, auditors, industry associations, and other external parties. Maintain strong relationships and uphold a positive company reputation. 
• Provide support to the 1st Line of Defence with IT compliance assessments and IT risk analysis. Offer consultation on cyber security and IT compliance, particularly during the development of new products and due diligence of partners. 
• Collaborate with key stakeholders, including senior management, business units, and external partners, to ensure effective communication and implementation of IT and IS risk management initiatives.

Who you are

• Proficiency in both written and spoken English, enabling you to comprehend regulatory requirements and contracts effortlessly and lead meetings efficiently.  
• A minimum of 5 years of experience as an Information Security Professional with a technical background, including experience in managing an ISMS or its components. 
• Extensive knowledge of financial service and governmental laws in the UK, along with a deep understanding of the specific expectations of regulatory authorities. 
• Proven experience in creating ISMS documents and a solid grasp of their organizational impact, particularly in relation to developers.
• A thorough understanding of how information security assurance is implemented in practice, with a strong desire to optimize and simplify its application.
• Strong analytical skills with the ability to leverage data for informed decision-making.
• Experience with industry standards for information security, especially ISO27001/2, and a comprehensive understanding of their underlying principles and rationale.

What we offer:

Diversity & Community

With our diversity of skills, perspectives and backgrounds, we can create, innovate, and disrupt like no other. Diversity is part of who we are, and essential to our success.

Ownership & Impact

Here, every voice matters. We’re organized into hundreds of small teams, each run like a start-up, focused on their own problem-space.

Trust & Collaboration

Successes and failures are won together at Klarna in a melting pot of teams. Win, lose, and learn, we’re on this path together.

If you love what you do, you should love where you do it. We appreciate that everyone’s different and has their own preferences of where and how to work. We genuinely believe in the power of regular face-to-face interactions in building close connections with our teams, but we also strongly believe people can work effectively remotely. This means that combining both is the key to success. 

At Klarna, You can choose between working from the office, hybrid within your employment country, or even outside of it for up to 20 working days per year. Flex it up!  

Challenges & Rewards

We take a very Swedish approach to benefits. Support for parents, health and wellness perks—we’ve got you covered.

About Klarna

Since 2005 Klarna has been on a mission to revolutionize the retail banking industry. With over 150 million global active users and 2 million transactions per day, Klarna is meeting the changing demands of consumers by saving them time and money while helping them be informed and in control. Over 450,000 global retail partners, including H&M, Saks, Sephora, Macys, IKEA, Expedia Group, and Nike have integrated Klarna's innovative technology to deliver a seamless shopping experience online and in-store. Klarna has over 6,000 employees and is active in 45 markets. For more information, visit Klarna.com

It is our commitment that every qualified person will be evaluated according to skills regardless of age, gender, identity, ethnicity, sexual orientation, disability status or religion. Please refrain from including your picture and age with the application.