Job Description
Join us in developing and strengthening an entire department and transforming cybersecurity capabilities on a global scale. If you're committed to making a real impact in the field of Cyber Security, you can #ShapeTheM with us.
Besides an interesting professional environment, we offer you a culture that wants you to thrive and allows to learn from each other:
* We try together, we stumble together, we get up together and shape our future. Be part of our transformation, build cross-functional capabilities and discover new ways of excelling in the Cyber Security field.
* We create impact in the world of food and offer comfort for our customers worldwide. To achieve this, we build capabilities to be the cyber-resilient omni-channel wholesaler.
* We invite you to take on responsibility, make our company your company and create a business together that remains true to its roots but always seeks new solutions.
* Together, we CARRY the M, we GROW the M, we INSPIRE the M, we SHAPE the M.
The purpose of a role is:
..to proactively identify, assess, and manage IT and information security risks within METRO AG and its entities, which includes developing risk management strategies, guidelines, and frameworks.
Your tasks:
* Conduct comprehensive IT and information security risk assessments to identify potential vulnerabilities and threats.
* Contribute to develop and maintain risk management frameworks, guidelines, and standard operating procedures.
* Support the Chief Information Security Officer (CISO) and Business Information Security Officers (BISOs) to integrate IT risk management into the broader information security strategy.
* Monitor and follow-up on risk mitigation efforts & providing guidance and support to METRO entities in implementing effective IT/OT and cyber risk management practices.
* Prepare and deliver risk-related reports and updates.
Qualifications
* Relevant Master’s degree in Computer Science, Information Security, or a related field
* Minimum of 3 years of experience in cyber security
* In-depth knowledge of risk management, compliance, and associated frameworks
* Familiarity with common information security standards (e.g., ISO 27001, NIST)
* Advanced skills in building detailed and actionable reports
* Proven project management abilities, ensuring projects are delivered on time and within budget
* Effective stakeholder management with strong communication and coordination skills in complex organizational environments
* Broad knowledge and overview of security architectures and security systems in IT and OT environments
* Fluent English skills
Additional Information
* We offer to be part of a fast-growing international team that has significant scaling ambitions across multiple markets.
* Work-Life Balance: Trusted working hours, 30 days of vacation and home office options
* Further training: A comprehensive further training offer over an own training team as well as an own annual training budget
* Well-being: Health programs, a free fitness studio on our campus and regular employee events
* Comfort: Very good public transport connections and free parking spaces including charging facilities for e-mobility. A canteens with a varied selection of meals and discounts in our stores and at many partner companies