Cyber Resiliency and Security Lead

Descrição do trabalho

About Rauva:

Rauva is Portugal’s first all-in-one platform designed for business owners and entrepreneurs to start, run, and grow their businesses. From opening a business account and managing certified invoicing, expenses, and payments to accessing expert accounting services, Rauva brings everything you need into one single place.

Combining cutting-edge technology with personalized human support, we simplify daily business finances, so entrepreneurs can focus on what truly matters — growing their business. And this is just the beginning, as we're in the process of acquiring the bank Montepio Empresas.

• Our achievements say it all:
• Awarded Mastercard For Fintechs Europe 2024
• Winner of the Banking Tech Awards 2024
• Recognized in the Technology Fast 50 2024 by Deloitte
• Winner of the Prémio Navegantes XXI 2024
• Selected by Banco de Portugal for the Finlab Portugal program
• Selected by Unicorn Factory Lisboa
• Honoured as the Tech Innovator in Portugal 2023 by KPMG

Rauva was founded just two years ago in Lisbon, Portugal, and we’ve been on an incredible growth journey ever since. Our team has expanded rapidly, from 40 members last year to 100 today, representing over 10 nationalities and proudly maintaining a workforce that is 47% female.

Your work at Rauva will directly impact thousands of entrepreneurs, as you collaborate with a passionate team of innovators to create cutting-edge, user-focused products that are transforming the future of Portuguese businesses.

About you:

We are looking for a Cyber Resilience & Security Lead who combines deep technical understanding of cybersecurity with strategic oversight of resilience operations. You are passionate about enabling secure growth in a fast-paced, cloud-native environment and thrive in translating complex risk into clear, actionable strategies. You bring experience managing real-time threat detection, incident response, and security governance — and can lead internal teams and external vendors to build a robust security posture from day one.

What's the role:

As Cyber Resilience & Security Lead at Rauva, you will play a pivotal role in protecting the integrity, confidentiality, and availability of our systems, data, and digital assets. You’ll be responsible for driving the implementation of our cyber defence and operational resilience programs, ensuring readiness against both internal and external threats, and leading the charge in demonstrating compliance with DORA, NIS2, and ISO/IEC 27001.

• Your Responsibilities
• Lead the design, implementation, and oversight of our cyber resilience program, covering detection, response, and continuity
• Manage the SOC (internal or MDR), ensuring timely detection, triage, and resolution of threats and incidents
• Oversee vulnerability management, adversarial testing, red/purple team operations, and threat-led simulations (e.g. TLPT, TIBER-PT)
• Align our cyber strategy with regulatory requirements, including DORA, NIS2, EBA Guidelines, and ISO 27001
• Collaborate with IT, legal, compliance, and product teams to enforce secure-by-design principles across the tech stack
• Own the playbooks and communication protocols for incident response, crisis management, and disaster recovery
• Serve as the primary point of contact for cybersecurity audits, penetration tests, and regulator inquiries

• What’s your ideal background?
• 5+ years of experience in cybersecurity, including operational security, threat detection, and resilience
• Prior leadership experience within a regulated environment (finance, fintech, banking, or critical infrastructure)
• Deep familiarity with frameworks like DORA, ISO/IEC 27001, MITRE ATT&CK, NIST CSF, and TIBER-EU
• Hands-on knowledge of SIEM, SOAR, vulnerability management platforms, red teaming tools, and cloud-native security tooling (e.g., GCP, AWS, Azure)
• Strong analytical and incident management skills; ability to translate complex threats into executive-level reporting
• Excellent communication and cross-functional leadership skills — you're comfortable in both the SOC and the boardroom

• What we can offer you:
• Hybrid Policy: 3 days in the office + 2 remote
• Competitive Salary above the industry average
• Meal Allowance
• Leadership Opportunities (chances to lead projects and teams)
• Enjoy off-site events and getaways to build a strong sense of community
• Access to the latest accounting software and tools
• Opportunities to advance within a rapidly expanding organization that aims to be present throughout Southern Europe in the very near future.

• The hiring process for this role:
• MBTI Test
• 1st interview: Intro call with People for cul