Information Security (InfoSec) Manager - Freelance/B2B ContractLocation: Berlin, Aschaffenburg, Düsseldorf/Dortmund (Onsite once a week in any of these locations)Contract Type: Freelance/B2BContract Length: Initial 3-6 months (with high likelihood of extension)Industry: Energy Software DevelopmentStart Date: ASAPWe are seeking an experienced Information Security (InfoSec) Manager to lead a complex security project and drive organizational change for a large-scale energy software development initiative. This role demands a hands-on, strategic leader with strong expertise in cyber security compliance, change management, and building a security-conscious culture.Key Responsibilities:Lead Complex Projects: Manage and oversee security aspects of a major software development project for energy products, ensuring all compliance and security standards are met.Organizational Change Management: Drive and implement security-related organizational change to improve overall security posture.Cyber Security Compliance: Ensure compliance with relevant standards, regulations, and policies, and develop strategies to mitigate risks.Awareness & Training: Select and manage security awareness providers to foster a company-wide security culture.Security Community Building: Establish and lead a security community within the company, promoting best practices and collaboration.Cross-Functional Leadership: Work closely with cross-functional teams to integrate security measures and guide decision-making across the organization.Required Skills & Experience:Proven track record of successfully managing large-scale, complex InfoSec projects.Strong background in cyber security compliance and regulatory frameworks.Experience in leading organizational change with a focus on security transformation.Ability to select and implement security awareness and training programs.Excellent leadership, communication, and stakeholder management skills.Fluency in both German and English is essential.Preferred Qualifications:Prior experience in the energy or software development sectors.Familiarity with ISO/IEC 27001, GDPR, or similar security standards.