As a Cybersecurity Manager, you will play a key role in ensuring the security of our organization by developing and implementing effective information security policies and procedures. This position requires strong analytical and problem-solving skills to navigate complex security challenges.
About the Role
This is an exciting opportunity to join our team and contribute to the development of our Information Security Program. You will work closely with various departments to ensure that technological advancements and digital transformations are seamlessly integrated into business processes.
Main Responsibilities
* Define, develop, and review information security policies, procedures, guidelines, forms, and templates in collaboration with subject matter experts.
* Develop and implement measures to ensure compliance with ISO 27001 and other applicable information security requirements and frameworks.
* Improve the Information Security Risk Management process and execute Information Security Risk Assessments and Analysis to ensure appropriate measures are taken to mitigate identified Information Security Risks.
* Develop and implement Information Security Auditing across all ZEISS legal entities and locations in conjunction with regional and business information security officers.
* Support communication of all matters related to the ZEISS Information Security Program to all businesses and regions.
* Drive further development of the ZEISS GRC tool.
Requirements
* University degree in Information Security, Cybersecurity, Computer Science, or a related field – or an equivalent combination of education and substantial hands-on experience.
* A minimum of 7 years of progressive experience in Information Security or related areas (e.g., ISMS, GRC, ISO 27001, auditing).
* Deep expertise in designing, implementing, operating, and maintaining ISO/IEC 27001-compliant ISMS, including re-certifications in multinational environments.
* Proven track record in delivering strategic security initiatives aligned with global business and regulatory requirements.
* Strong analytical and problem-solving skills with the ability to navigate complex security challenges.
* Experience in managing Information Security KPIs, governance frameworks, and executive-level reporting.
* Solid understanding of compliance across international legal and regulatory landscapes (e.g., GDPR, NIS2, SOX).
* Excellent communication and leadership skills, with the ability to influence stakeholders across technical, business, and executive levels.
Language
JBRP1_DE
We Offer
We offer a dynamic work environment with opportunities for professional growth and development. As a valued member of our team, you will have access to a range of benefits and resources to support your success.