Information Security Manager

Join Colibrix One – Innovating the Future of Payments

At Colibrix One*, we’re building advanced, AI-powered payment technologies that support Payment Service Providers (PSPs), Electronic Money Institutions (EMIs), and neobanks across the EU and the UK. As a fully licensed EMI (FCA reference number 927920) and a Principal Member of Mastercard, we offer real-world financial solutions that include:

• Global card processing
• Digital wallet infrastructure
• Cross-border merchant accounts
• Alternative payment methods (APMs)
• Corporate accounts for legal entities

We’re a fast-growing team with a passion for innovation, security, and scalability. Our culture values curiosity, collaboration, and impact - and we’re looking for talented professionals who are ready to shape the future of fintech.

At Colibrix One, your work directly powers the digital economy. If you're eager to solve meaningful challenges and build with purpose, we’d love to hear from you.

We're looking for an experienced Information Security Manager to lead security policy development, manage risks and incidents, and ensure compliance with standards like PCI DSS, ISO, and GDPR. You'll drive security awareness, oversee access and asset management, and support cloud and infrastructure security across the business.

Responsibilities

• Develop and enforce security policies: company-wide rules, standards, and procedures
• Define acceptable use rules: corporate devices, data, communication tools.
• Implement asset management practices: classification, inventory, ownership.
• Oversee access management: RBAC, periodic reviews, approval workflows.
• Safeguard data confidentiality: enforce handling rules, prevent leakage, monitor misuse.
• Drive governance and awareness: security culture, training, phishing campaigns.
• Prevent insider risks: education, monitoring, process enforcement.
• Manage security incidents: coordination, escalation, root cause, executive reporting.
• Assess and manage business risks: finance, HR, sales, operations.
• Strengthen supply chain security: vendor risk assessments, third-party dependencies, assurance.
• Maintain and test continuity plans: BCP, DRP, resilience validation.
• Serve as an interface for PCI DSS, DORA, SWIFT, ISO, GDPR compliance needs.

Requirements

• Experience in managing asset and access management systems.
• Experience in incident management and security governance.
• Knowledge of business domains, ability to identify security risks and mitigate them.
• Solid understanding of infrastructure and cloud security (AWS, Kubernetes, CI/CD pipelines).
• Practical experience in Information Security Awareness: education, simulations.
• Background in risk management, business continuity, and disaster recovery planning.
• Experience working with vendors, regulators, and external partners.
• Proficiency in Security standards: PCI DSS, DORA, SWIFT, ISO, GDPR  

Nice to have

• Experience in fintech, banking, or other regulated industries.
• Participation in certification projects (PCI DSS, ISO, SOC 2).
• Certifications: CISSP, CISM, CISA, AWS Security Specialty.
• Experience with FinOps and security cost optimization.
• Background in building and scaling Security Awareness programs.

What We Offer:

• Opportunity to shape the future of fintech solutions within a growing company 
• Collaborative, horizontal team structure that values your expertise and ideas 
• Continuous learning and development opportunities to enhance your skills and career growth 
• Competitive salary and benefits package 
• Flexible work arrangements to support work-life balance

* Employment will be offered through one of the group’s legal entities - Mellifera Kartiera Ltd, Colibrix Ltd, or Mellifera Operations Ltd - depending on the role, location, and applicable legal framework.

Please note that Colibrix One is a brand representing a group of legal entities. The employment contract will be signed with the relevant company within the group (Mellifera Kartiera Ltd, Colibrix Ltd, or Mellifera Operations Ltd) depending on the nature of the position and jurisdiction

This position is offered within the Colibrix one. Employment will be under the appropriate legal entity based on the role and location.