Security Manager, Credit & Wealth – Tieto BankTech

Tieto BankTech is the leading financial services software, and solutions partner in the Nordics, delivering modular, pre‑integrated Banking‑as‑a‑Service platforms and mission‑critical software for core banking, payments, credit, cards, fraud prevention, and wealth management. Our solutions operate in highly regulated, high‑availability environments where security, resilience, and compliance are non‑negotiable.

We are looking for an experienced Security Manager to take technical ownership of security management within our Credit and Wealth business unit, ensuring robust protection of our SaaS platforms, product development environments, and operational services.

This role is hands‑on and technical in nature, combining security leadership with deep involvement in incident response, risk management, and regulatory compliance. You will work closely with BankTech Security, product engineering, cloud and infrastructure teams, and other key control functions.

As Security Manager, you will:

Security Operations & Incident Response

• Act as Lead Security Incident Manager for Product Development and SaaS / Managed Services
• Own and drive security incident response processes, including detection, containment, eradication, recovery, and post‑incident analysis
• Coordinate technical resolution with product owners, architects, engineering teams, site reliability / operations, and service managers
• Ensure proper root cause analysis (RCA), corrective actions, and preventive controls are identified and implemented
• Maintain accurate and complete incident documentation in line with audit and regulatory expectations

Security Governance & Risk Management

Own and evolve the security framework for the business unit, covering:

• Information security
• Cloud and application security
• Product development security (SDLC / DevSecOps)
• Physical and operational security
• Business continuity and resilience
• Perform risk assessments and threat analysis across systems, services, and processes
• Translate risk findings into concrete technical and procedural controls
• Support and contribute to BCP/DR planning, technical resilience testing, and operational continuity activities

Compliance & Assurance

Develop, maintain, and enforce security policies, procedures, and technical controls aligned with:

• ISO 27001 / ISMS

• SOC 1 / SOC 2
• Financial services regulatory requirements
• Actively support audits, assessments, and certifications, including evidence collection and remediation tracking
• Ensure ongoing compliance with privacy and security legislation, including:
  • GDPR
  • NIS2
  • DORA
  • EU AI Act
• Serve as the security authority within the business unit toward Group Security, auditors, regulators, and internal control functions

Security Enablement

• Provide technical security guidance to product development, platform, and operations teams
• Embed security requirements into architecture decisions, technical designs, and delivery processes
• Drive security awareness and training, with a focus on secure development and operational practices
• Act as the primary security escalation and advisory contact for the business unit

Who you are

You are a senior security professional with strong technical depth, credibility with SW engineers, and the ability to operate confidently in a regulated SaaS and financial services environment.

Experience & Background

• 8–10+ years of experience in security roles within software development and SaaS / managed service environments
• Strong hands‑on experience with:
  • Security incident handling and forensics collaboration
  • Risk assessment and control design
  • Security governance in large, complex organizations
• Experience working in or close to financial services, banking, or other regulated industries

Technical & Professional Skills

• Solid understanding of application development, platforms, and cloud security concepts
• Working knowledge of secure SDLC / DevSecOps practices
• Proven experience with standards and frameworks such as:
  • ISO 27001
  • SOC 1 / SOC 2
  • ISO 9001 / 14001 (understanding of integrated management systems)
• Demonstrated experience implementing and maintaining compliance programs and certifications
• Strong documentation skills and ability to produce audit‑grade material
• Engineering degree in Computer Science, Software Engineering, Computer Security, or equivalent

Personal Profile

• Clear, structured communicator with strong spoken and written English
• Confident advisor to engineers, product managers, and senior stakeholders
• Able to balance security, availability, and business continuity
• Customer facing with a good sense business acumen

What we offer

• A technically challenging security manager role in a highly regulated, mission‑critical SaaS environment
• Direct influence on the security posture of products used by leading financial institutions
• Participation in a major transformation journey at Tieto BankTech
• Work across global and local markets
• A collaborative culture with skilled engineers and security professionals
• Health and wellness programs
• Ongoing professional development and learning

How to apply?

Interviews will be held continuously, so we encourage you to apply today! For more information or questions, please contact Talent Acquisition team recruitmentinbanking@tieto.com Tieto embraces diversity wholeheartedly, extending a warm invitation to applicants from every gender, age group, ability, ethnicity, orientation, belief system, and background. Step into the forefront of the digital banking revolution alongside Tieto BankTech, where you can contribute to unlocking the full potential of businesses and societies, while also realizing your own.

As part of our recruitment process, we validate identity and conduct background checks to ensure a secure hiring experience.

Application deadline: 15th of May. 

At Tieto, we believe in the power of diversity, equity, and inclusion. We encourage applicants of all backgrounds, genders (m/f/d), and walks of life to join our team, as we believe that this fosters an inspiring workplace and fuels innovation. Our commitment to openness, trust, and diversity is at the heart of our mission to create digital futures that benefit businesses, societies, and humanity.

Diversity, equity and inclusion (tietoevry.com)