In this governance role, you will implement the information security strategy of the entire group of companies in a risk-based manner, ensure the necessary compliance and help to create the required awareness.
Your tasks
* Operation, expansion and optimization of the information security management system (ISMS)
* Preparation, implementation and follow-up of internal and external audits (e.g. ISO 27001, TISAX)
* Development and implementation of target group-oriented training courses as well as awareness and security testing measures
* Carrying out risk analyses and assessments of IT systems and services
* Reporting suspicious and security incidents and participating in their analysis, clarification and processing
* Developing risk-based measures together with the specialist departments and following up on their implementation
* Developing key performance indicators, collecting and maintaining data and creating consolidated reports
* Ensuring compliance with Group-wide security regulations and responsibility for creating, updating and complying with global and regional security-related corporate guidelines and standards
Your profile
* Completed studies (e.g. computer science, business informatics, cyber security, business administration) or comparable professional background
* Several years of professional experience in information security and sound knowledge of IT infrastructure and IT security
* Very good knowledge of the ISO27x series standards and the TISAX framework
* Experience with audits and global projects
* Very good knowledge of German and English
* Willingness to travel occasionally
We offer
Opportunities and promotion prospects for employees with the appropriate requirements profile.
We are looking forward to your application.
Company / Legal Entity: LISA Dräxlmaier GmbH, Org-Code: S-IS