Cyber Security Manager
We usually respond within a week
Shine is the financial copilot for entrepreneurs and small business owners.
Founded by serial entrepreneurs Rico Andersen and Martin Hegelund, Shine is a leading European fintech unicorn on a mission to restore the joy of running a business, by ending wasted time on financial admin. Shine offers a connected solution for invoicing, accounting, payroll, business accounts, payments, and financing, meaning business owners can focus their energy on growing a healthy business, not held back by manual admin.
Part of something bigger
Today we're part of Cegid, a European leader in cloud software for finance and accounting. Together we're building Europe's leading financial copilot for small businesses and their accountants.
Shine already supports more than 400,000 small businesses. As part of Cegid, we now reach over one million small businesses and 15,000 accountants across Europe.
We're a multicultural team working from France, Germany, Denmark and the Netherlands, contributing to a wider European network that spans Spain, Portugal and Belgium.
Your hiring experience matters
Just as we respect our customers' time, we respect yours. Your experience with Shine and Cegid should feel simple, transparent and genuinely supportive.
If this sounds like somewhere you want to grow, we'd love to hear from you.
The Information Security team at Shine
At Shine, our Security team operates as a strategic driver rather than a support function. We work directly with leadership to integrate resilience into the company’s core, navigating the complex intersection of cloud-native architecture, AI innovation, and rigorous regulatory standards like DORA and ISO 27001. By partnering cross-functionally with Engineering and Risk, we aren’t just maintaining a perimeter; we are building a scalable, high-visibility security framework that defines the future of digital operational excellence in the fintech space.
Your Role as a Cyber Security Manager at Shine
Shine Bank is looking for an Cyber Security Manager to help shape and operate our information security and digital operational resilience framework. Reporting directly to the CISO, you will take a key role in implementing and maturing our Cyber Defence capabilities in close collaboration with IT, Risk, Internal Audit and Management. As Cyber Security Manager, you will own our defensive security technology stack and our incident-readiness capability.
Your responsibilities
Own, evaluate, and continuously improve our defensive security technology stack — EDR/XDR, DDoS protection, vulnerability management, DLP, and endpoint hardening.
Ensure robust DDoS protection across our internet-facing and payment-critical services — selecting and managing mitigation solutions (e.g. Cloudflare, Akamai, AWS Shield) validating that protection holds up to the availability expectations regulators place on a payment institution.
Design, write, and maintain incident response playbooks for our most relevant scenarios aligned with DORA ICT incident-management expectations.
Plan and facilitate regular tabletop exercises and simulations across technical, operational, and executive stakeholders; capture findings and drive remediation to closure.
Partner with the SOC Manager to ensure tooling supports detection and response use cases (mapped to MITRE ATT&CK).
Provide the technical evidence and control assurance the Information Security (GRC) function needs for PCI-DSS, DORA, and ACPR-related obligations.
Manage security vendor and MSSP relationships, contribute to the security technology roadmap and budget, and translate threat intelligence into concrete control improvements.
Report on resilience metrics and the effectiveness of deployed controls to security leadership.
📍 Job located in Berlin or Madrid office, with possibility of two remote working days per week
About you
Hands-on background in technical / engineering security operations, ideally within regulated financial services, payments, or fintech.
Practical experience deploying and operating EDR/XDR platforms (e.g. CrowdStrike, SentinelOne, Microsoft Defender) and other core defensive tooling.
Hands-on experience with DDoS mitigation and edge/CDN security (e.g. Cloudflare, Akamai, AWS Shield/WAF) and an understanding of how to protect high-availability, customer-facing services.
Demonstrated incident response experience — you have built playbooks and run tabletop exercises, not just read about them.
Working knowledge of DORA, PCI-DSS, NIS2 and MITRE ATT&CK.
Strong stakeholder and vendor management skills, with the ability to bridge technical detail and business risk.
Fluent English required; German is a strong advantage.
Equal Opportunity Employer
We follow the principle of equal treatment to consider all job applicants and do not discriminate based on their gender, sexual orientation, color, racial or ethnic origin, religion, disability, etc. as per applicable law.
Our recruitment process
1️⃣ A 30' first call with Talent Acquisition to get to know you better and share more about Shine.
2️⃣ A 60' interview with your potential lead to discuss your past experiences and the role we are offering.
3️⃣ A 30' Interview with our Chief Complience Officer to dive deeper into the technical aspects.
4️⃣ A 60' business case presentation to highlight your skills and give you a hands-on feel for the role.
5️⃣ A soft skills interview to see how we can best support your growth at Shine.
- Department
- Banking & Compliance
- Locations
- Madrid, Berlin