THE ROLE & THE TEAM
We are seeking a DORA subject matter expert to own and manage our Security Operations DORA reporting framework, and align it with our key stakeholders.
This is more than a reporting role; you are the central point for translating complex regulatory requirements into clear, actionable insights, ensuring that our Security Operations services and the capabilities of our vendors align with the Digital Operational Resilience Act. You will combine Security Operations domain knowledge with technical reporting responsibilities, including vendor management, to ensure high-quality data delivery, compliance insights, and effective client communication regarding operational resilience metrics.
INCLUSIVE BY DESIGN
If you think you have what it takes, we encourage you to apply even if you don't meet every single requirement. You may just be the right candidate for this or other roles!
At Zalando, our vision is to be the leading pan-European ecosystem for fashion and lifestyle e-commerce – one that thrives on diversity and is truly inclusive by design. We believe that diverse teams fuel innovation and creativity, and we actively seek out talent from all backgrounds.
We actively seek to reduce bias in our hiring and employment processes, focusing on your qualifications, skills, and contributions. To support this, we kindly ask that you refrain from including personal details such as your photo, age, or marital status in your CV, ensuring a fair and equitable evaluation based solely on your abilities and potential.
We are committed to providing an exceptional and accessible candidate experience for everyone. If you require any accommodations to support you throughout the hiring process, please let us know – we are here to assist you.
Discover more about our commitment to creating a diverse and inclusive workplace: https://jobs.zalando.com/en/our-culture/diversity-and-inclusion
WHAT WE’D LOVE YOU TO DO (AND LOVE DOING)
Serve as the dedicated DORA compliance liaison and Security Operations subject matter expert for key stakeholders, building a trusted partnership through proactive communication and transparent reporting.
Design, build, and continuously improve a suite of regulatory reporting that provides clear, real-time visibility into DORA compliance status.
Deconstruct DORA regulatory technical standards (RTS) into concrete Service Level Agreements (SLAs), Key Performance Indicators (KPIs), and operational metrics that drive security posture.
Actively monitor, analyse, and steer the agreed-upon DORA SLAs and KPIs, identifying trends, risks, and opportunities for improvement in the SecOps domain.
Work closely with internal security operations teams and external vendors to ensure all data sources are aligned, accurate, and provide end-to-end, DORA-compliant evidence.
Prepare and present regular compliance and performance reports for both internal leadership and our client, articulating technical details and their business impact with clarity and confidence.
Gather feedback on reporting needs and use it to iterate and improve dashboards.
Coordinate delivery timelines and ensure service levels are met in alignment with reporting commitments.
WE’D LOVE TO MEET YOU IF
You have 3+ years of experience in a compliance, risk, or security operations role within the financial services or FinTech sector, with a deep, practical understanding of DORA's requirements for critical ICT third-party providers. BaFin knowledge is a significant plus.
You have proven success in a technical account management, client services, or stakeholder management role. You are adept at managing expectations, steering complex conversations, and building strong professional relationships.
You possess hands-on proficiency with data querying and analysis using SQL. You are highly skilled with BI and data visualisation tools (e.g., Tableau, Looker, Power BI) to transform raw data into compelling stories.
You possess a unique ability to act as a bridge, fluently translating between highly technical security teams, business-focused client stakeholders, and regulatory frameworks.
You have excellent written and verbal communication skills, with the ability to explain technical insights to non-technical audiences.
OUR OFFER
Zalando provides a range of benefits, here’s an overview of what you can expect. Ask your Talent Acquisition Partner to learn more about what we offer.
27 days of holiday a year to start for full-time employees
2 paid volunteering days a year
Hybrid working model with up to 60% remote per week, actual practice is up to each team to best support their collaboration
Work from abroad for up to 30 working days a year
Employee shares program
40% off fashion and beauty products sold and shipped by Zalando, 30% off Lounge by Zalando, discounts from external partners
Relocation assistance available (subject to prior agreement)
Family services, including counseling and support
Health and wellbeing options (including Wellhub, formerly Gympass)
Mental health support and coaching available
Drive your development through our training platform and biannual peer-to-peer review
