Third Party Security Manager

How do you make our customers happy?

By safeguarding every transaction on our platform. We innovate at breakneck speed and leverage cutting-edge technology, making security both crucial and complex. With 13 million customers and 50,000 partners, our platform attracts not just legitimate users but also unwanted attention from black hats. As most business and IT development teams collaborate with external partners, robust security is non-negotiable. Can you design and implement security policies that protect without impeding innovation?

The biggest challenge

Security at bol means keeping pace with constant innovation. Every development – from minor UX tweaks to major new propositions – has IT security implications that need careful evaluation. This requires you to continuously challenge business perspectives, sometimes firmly steering projects in a different direction. Beyond internal security, there’s the critical task of securing third-party collaborations. After all, our platform is only as strong as its weakest link.

What you'll do as 3rd Party Security Manager

As 3rd Party Security Manager, you’ll be the ‘security conscience’ bridging business and IT in third-party collaboration. You’ll be a visible presence throughout the organization, helping colleagues integrate business partners securely into bol’s IT ecosystem. Through persuasion and practical guidance, you’ll ensure security becomes a fundamental consideration rather than an afterthought. Working with your team, you’ll maintain comprehensive oversight of our security landscape, monitoring risk profiles and vulnerabilities. When risks approach unacceptable levels, you’ll drive swift and appropriate action. Beyond advisory work, you’ll conduct thorough assessments of high-risk partners through audits and reviews, guiding business owners toward effective risk mitigation.

While compliance checks for business partners are part of your responsibilities, they’re not your primary focus. You’ll continuously pioneer ways to enhance our platform and tooling security, often spearheading improvement projects yourself. The real challenge? Convincing colleagues to pause and consider security implications when they’re excited about a promising innovation. And more importantly – ensuring security becomes second nature across the organization. Key areas you’ll tackle include:

• Secure partner onboarding and integration
• Leading security audits with business partners
• Risk identification and mitigation across stakeholder groups
• Driving and monitoring 3rd party compliance
• Managing security incidents with partners
• Building scalable risk management processes and tools
• Championing the 'Think Like A Hacker' mindset: inspiring colleagues to embrace security thinking while having the courage to challenge even the most promising initiatives

Why you can make a difference

Because you’re a pragmatic IT Security specialist who thrives on making tangible security improvements, working across diverse stakeholder groups. Your IT Security consulting background serves as an excellent foundation, especially combined with business experience. You’re comfortable in the operational trenches – this isn’t an ivory tower role. You excel at building commitment, driving results, and course-correcting (firmly but tactfully) when needed. You can confidently brief senior management, but you’re not someone who considers their job done once recommendations are made. Instead, you’re driven to turn plans into reality, skilled at generating momentum and buy-in for your initiatives.

• Your track record inspires confidence Armed with a Bachelor's/Master's degree and 3+ years of relevant experience, you're the natural go-to person for secure partner collaboration.
• You're a curious problem solver You dive deep into partner security and bol integration, constantly spotting improvement opportunities and transforming them into actionable proposals.
• You make security accessible Complex concepts become clear when you explain them. You're persuasive but pragmatic, separating critical issues from minor concerns as naturally as plastic from organic waste.

This is where you'll work

You’ll join our IT Security department, part of a broader IT operations organization with five specialized sub-teams. We embrace experimentation and emerging technologies, ensuring there’s never a shortage of security challenges and opportunities. The atmosphere? Dynamic, open-minded, and refreshingly ego-free. We thrive on collaboration between equals, knowledge sharing, and continuous improvement. While you can achieve impressive results solo as a 3rd Party Security Manager, your impact multiplies with teammates.