Information Security Manager (Part-time / Full-time – 20h/40h) Location: Spain (Hybrid / Remote)About NebeusNebeus is an all-in-one app that effortlessly merges multi-currency payments, virtual IBANs, cryptocurrency services, and cutting-edge cards, empowering users globally to navigate their dynamic work lifestyles.Nebeus' vision is rooted in financial inclusivity, where everyone, regardless of location, can securely and simply manage their finances while monetizing their skills and talents.Key facts:Founded in ****, backed by ex-VC executives, Seedrs, and the UK government's Future FundNebeus is a multi-cultural and international team spread across London and BarcelonaRole MissionThe Information Security Manager will be responsible for defining, implementing, and maintaining the company's information security framework and ICT risk management strategy.This role ensures the protection of digital assets and compliance with applicable regulations, working closely with IT, Compliance, and external partners where necessary.This position is designed for an autonomous, hands-on professional who will lead the information security function while coordinating with cross-functional teams and leveraging external providers when required.Key ResponsibilitiesDefine, implement, and maintain information security policies, procedures, and controlsConduct ICT risk assessments and develop mitigation plansEnsure compliance with applicable regulations and frameworks (e.g. DORA, ISO *****, ENS)Coordinate internal and external security auditsOversee access management, backups, and core cybersecurity controlsLead and coordinate the response to security incidentsAssess and manage third-party and vendor risksPromote a strong security culture through internal training and awareness initiativesCollaborate closely with IT, Compliance, and the DPOChair the ICT Committee and report regularly to the Board and ExCo on the Group's security posture and key risksOwn and maintain the Group's ICT ris