Head of Information Security

Join the best bank to work for in Bulgaria*

Who we are:
Do you want to join a well-established bank with a start-up culture? No, we’re not joking!

We, at tbi, have been one the most profitable banks for years and we are growing at a fast pace. We’re a bank with a long history of success that operates as a start-up and we’re always on the lookout for new opportunities to grow our business. How do we do that?

It's all about our people. Our team is made up of brave, passionate and caring people who don’t just want to follow the same path – we want to transform into mobile-first, state-of-the-art lifestyle ecosystem. Our colleagues love working here – 80% of them would recommend tbi as an employer to their friends and family. Our people are engaged in challenging and meaningful work, inspired to grow their potential and career, encouraged to learn and empowered to take decisions. That’s not corporate babble, it’s what our people say.

Do you want to play a key role in our unique success story?

If so, we're looking for a Head of Information Security to join our team on the journey to success!

What You’ll do:

• Define and execute the Bank’s cybersecurity strategy aligned with business goals and risk appetite

• Act as a trusted advisor to executive leadership and board-level stakeholders on cyber risk

• Own and continuously evolve the enterprise-wide information security and cyber risk management framework

• Establish and monitor KPIs, KRIs, and measurable security metrics

• Ensure compliance with DORA, NIS2, GDPR,EU AI Act and applicable financial regulatory frameworks

• Lead regulatory engagement, audits, and supervisory interactions

• Define and govern enterprise security architecture (cloud, on-prem, hybrid)

• Ensure secure-by-design and privacy-by-design principles across all systems

• Oversee Identity & Access Management (IAM/PAM), data protection, encryption, and API security

• Lead Security Operations (SOC), incident response, and threat intelligence capabilities

• Ensure resilience against ransomware, APTs, and supply chain attacks

• Drive DevSecOps and secure SDLC practices across engineering teams

• Oversee security of AI/ML systems and emerging technologies

• Collaborate with IT, Product, Risk, Legal, and Compliance teams to embed security organization-wide

• Build, lead, and mentor a high-performing cybersecurity team

• Manage and optimize the cybersecurity budget based on risk priorities

What you’ll need to succeed:

• University degree in a relevant field (e.g. IT, Computer Science, Finance, or similar)

• Fluency in English (written and spoken)

• 10+ years of experience in cybersecurity, including senior leadership roles

• Experience in financial services, fintech, or highly regulated environments

• Strong knowledge of cloud security (Azure, AWS, GCP)

• Expertise in Identity & Access Management (IAM/PAM), Zero Trust, and security architecture

• Deep understanding of DORA, NIS2 Directive, GDPR, and financial regulatory expectations (EBA/ECB)

• Solid understanding of relational databases, network communications, and global application systems architecture

• Strong understanding of web servers, proxies, Active Directory, and monitoring solutions

• Hands-on experience with Microsoft Azure administration and cloud security

• Experience in vulnerability and patch management processes

• Familiarity with security monitoring, endpoint protection, and email/spam filtering solutions

• Experience with DevSecOps, CI/CD security, and modern application architectures

• Knowledge of API security and open banking ecosystems

• Familiarity with AI/model security and data governance principles

• Relevant certifications such as CISSP, CISM, CRISC, CCSP (preferred)

• Strong leadership, communication, and stakeholder management skills

• Ability to translate complex technical risks into business impact

• Strong logical thinking and understanding of network communication devices

• Strong analytical and problem-solving skills, with attention to detail

What we offer:

• Seize the opportunity to grow your career

• Engage in exciting and meaningful work

• Get recognition for your work and attitude

• Learn new skills and get management training

• Become part of a large, friendly and supportive team with 23 nationalities

• Get additional private health insurance

• Receive special prices for multisport card and multiple retailers

• Obtain preferential prices for our banking products

• Enjoy a great location in Sofia’s city centre near National Palace of Culture and South Park

• Bring your furry bestie: Let's make work pawsome

Visit our Career Page to learn more about what makes us different.

If this sounds like something you’d be interested in, we'd love to hear from you!

To apply for this position, please send us your CV in English.

We'd love to get back to everyone, but due to the number of applications we receive, we can only contact the shortlisted candidates.

*We are ranked the top bank and top 3 employer to work for in Bulgaria according tо WhereWeWork 2025 employer ranks.

All applications are treated with utmost confidentiality.

By submitting your job application to tbi bank, you confirm that you have read the document named “Information related to personal data processing for job applicants” publicly available on tbi Career page.