Information Security Officer

About the Role: Join a leading, innovative team as an Information Security Officer! In this pivotal role, you'll be the go-to expert for all matters concerning information security and data protection within a dynamic business unit. This position, on behalf of a prestigious Excelloit client, offers a challenging and rewarding environment for a skilled professional.

Key Responsibilities:

• Serve as the primary point of contact for management and employees on information security and data protection.
• Support and collaborate with the Group Information Security Officer, representing the business unit.
• Lead and manage information security (including TISAX) and data protection projects.
• Assist in developing, reviewing, and communicating information security policies.
• Conduct, document, and follow up on InfSec and data protection risk analyses.
• Gather, consolidate, and report key InfSec and data protection metrics.
• Facilitate internal and external audits related to InfSec and data protection.
• Plan and conduct training sessions to enhance staff awareness.
• Actively contribute to the enhancement of the InfSec management system.
• Engage in tenders and respond to customer queries regarding InfSec and data protection.
• Advocate for standardization and best practices within the management system.
• Support the enforcement of InfSec regulations within the business unit.
• Develop and implement unified InfSec principles and rules company-wide.

Your Profile:

• University degree in technical or economics with a focus on information security/data protection or similar qualification.
• Proficient in ISO27001, TISAX, and other security standards (e.g., NIST, Cobit, CIS Controls, GDPR).
• Strong technical understanding of current security systems.
• Familiarity with InfSec risk analysis and relevant standards.
• Basic knowledge of other management systems (ISO 9001, IATF 16949, ISO 14001, etc.).
• Aware of legal regulations (BSIG, GDPR, HinSchG) and EU guidelines in information security.
• Experience in managing diverse, cross-cultural projects.
• Initial experience as an auditor for InfSec topics.
• Proficient in office, ERP systems, and technical testing systems for InfSec.
• Lead auditor or implementer for ISO27001 or willingness to achieve this.
• Qualification as a company data protection officer.
• Excellent teamwork and communication skills.
• Fluent in English; other languages are a plus.
• Analytical, conceptual, and entrepreneurial mindset.
• Structured, assertive, and results-oriented work approach.
• Hands-on mentality and high commitment level.
• Business travel willingness (domestic and international).

#InfoSecJobs #CyberSecurityCareer #DataProtection #ITSecurity #TechJobs #ISO27001 #RiskManagement #ERPSystems #SecurityCompliance #GlobalIT