The PSI Group develops software products for optimizing the flow of energy and materials for utilities and industry. As an independent software producer with more than 2,300 employees, PSI has been a technology leader since 1969 for process control systems that ensure sustainable energy supply, production and logistics by combining AI methods with industrially proven optimization methods. The innovative industry products can be operated on-premises or in the cloud.
Tasks inspiring you
* Support, drive and improve PSI’s information security strategy on a wide range of topics
* Shape and improve our information Security Management System (ISMS) in a sustainable and feasible way
* Perform information security governance related tasks (e.g. policy creation and management for all information security topics, process creation and improvements, information security framework improvements)
* Requirements management for information security (e.g. around ISO 27001, NIST CSF, KRITIS, ISO 27017, ISO 27019)
* Support information security reviews and reporting (e.g. maturity assessment)
* Perform and improve information security risk management activities (e.g. risk identification, evaluation and assessment) from a general perspective
* Stakeholder communication and collaboration across all our business units and legal entities on all levels (engineers, engineering managers, technical product managers, product owners, leadership, etc.)
* Participate in information security relevant due diligence activities (e.g. vendor and product assessments)
* Participate and support in relevant audit preparations such as for ISO 27001 and TISAX
* Strengthen the information security and data compliance culture and support information security knowledge management
* Assist in incident management activities
Qualifications that inspire us
* InfoSec Management and ISMS (ISO 27001, NIST, etc.) knowledge
* General business and organizational understanding best in software development industry
* Experience in information security governance activities (e.g. create, improve and implement processes, policies as well as perform control activities)
* Strategic thinking to ensure we follow a sustainable way and don’t forget the big picture
* Risk Management experience
* General cloud security knowledge (GCP and Office365)
* Analytic skills: you think things through and are a thought leader
* Ownership mindset for tasks: You take end-to-end responsibility for a task from idea/start to finish
* Good understanding of lean and agile practices
* Good communication and interpersonal skills
* Operational excellence and maturity knowledge
* Fluency in written and spoken English (German is a plus)
* Data Compliance knowledge (GDPR, CCPA, etc. ) as plus
* Great enthusiasm for Information Security
* Intrinsic motivation, never ending curiosity
* Quick thinking and continuous learning personality and thus are able to dive into new topics quickly, filter and digest the relevant information
* Inquisitive and analytical mindset
* Great communication skills, clear and to the point
* Proactivity driver attitude happy to collaborate with others
* Ability to work comfortably in a lean and agile environment
Nice-to-have
* Information Security Management (ISMS) certifications (e.g. CISM, ISO 27001 LA,...)
* Data Privacy relevant certifications (e.g. CIPM, CIPP/E)
* Cloud security relevant certifications (e.g. GCP Cloud Engineer, GCP Security, MS365 etc.)
* Terraform experience
* Requirements management experience
Look forward to
* Stock program
* Development & Training
* Flexible Working Time
Pioneering a smarter world. Are you on board?
Does this sound like the right challenge for you? Then we look forward to receiving your CV and cover letter, stating your salary expectations and earliest possible starting date.
Your contact
UteGraalmann
HR Manager
People & Organization
ugraalmann@psi.de
#J-18808-Ljbffr