Role: IT Security Engineer
Type: Permanent
Location: Bielefeld, Germany (Onsite days a week)
Min B level German Speakers Required
Initial situation
The challenges in the area of IT security are constantly increasing. The one that has just been put into effect
Information security concepts must be brought to life (training, implementation of
measures, monitoring). New legal regulations come from us, such as the NIS
EU regulations that will affect various group companies.
Our Group IT is currently taking on tasks in the area of IT security checks and audits,
which is handled by IT security due to independence considerations
which, however, currently only consists of our CISO.
Goal
In the short term, additional capacity is to be created to address bottlenecks in the area of IT security
to address. The candidate should therefore have the potential to take on the CISO role
to grow in.
Requirements profile
· Study of computer science, business informatics or similar training
· Several years of professional experience as an IT security engineer or in the area of information security
ideally in industry
· High technical know-how in the area of cybersecurity
· Knowledge and experience in using forensic tools
· Good knowledge of relevant programming languages
· Experience with security topics in cloud and ERP environments as well as in the Microsoft Office world
· very good German and English language skills
· Trustworthiness, conscientiousness
· Analytical thinking, resilience and hands-on mentality
· Willingness to travel to some extent
· Ideal age to
Area of responsibility
· Carrying out IT security checks and audits (in collaboration with CISO, internal
Audit and Group IT)
· Investigate and take action on security breaches and their causes
Measures at the global group companies
· Training and raising awareness of the group companies in the area of IT security
· Development, implementation, testing and maintenance of security systems as well as the
Monitoring the effectiveness of these systems
· Constantly searching and fixing vulnerabilities in IT infrastructures, cloud solutions
and applications
· Support in the creation of security concepts, emergency plans,
security reports etc.
· Support and collaboration with the CISO, Group IT, the local IT organizations, our internal audit department and external bodies ( insurance companies and
authorities)
· Reporting to and deputizing to the CISO
· Administrative tasks in the CISO area