About This Role
As a seasoned cybersecurity professional, you will play a pivotal role in shaping our organization's information security strategy.
This leadership position requires a deep understanding of governance-focused information security practices and the ability to balance technical requirements with business needs.
* Lead Information Security Strategy: Develop and implement a comprehensive information security management system (ISMS) that aligns with current technical standards and regulatory requirements.
* Advise and Collaborate: Provide strategic guidance to senior management on all matters related to information security and IS emergency preparedness, working closely with cross-functional teams and external auditors.
* Monitor and Ensure Compliance: Plan, conduct, and accompany internal and external ISMS audits, track corrective actions, and ensure the documentation and enforcement of security-related measures.
* Train and Raise Awareness: Design and deliver awareness programs, training sessions, and workshops on information security topics to foster a strong security culture across the organization.
* Crisis Response: Support the company's crisis management team in security-related matters, develop and maintain the IS emergency concept, and plan regular emergency drills in coordination with leadership.
* Respond and Document: Handle security incidents, propose and track remediation measures, and ensure thorough documentation of all cases and activities.
Requirements
* Professional Background: Several years of experience in a governance-focused information security role, ideally as a Corporate Information Security Officer (CISO) in a KRITIS environment.
* Industry Knowledge: Familiarity with the energy sector, ideally with experience in terminal operations or related infrastructure.
* Governance and Audit Focus: Strong knowledge of ISMS frameworks and audit practices; comfortable operating at the interface between compliance, risk management, and business strategy.
* Business Understanding: Ability to balance information security requirements with business needs, demonstrating commercial awareness and sound judgment.
* Leadership Experience: Proven experience in leading teams and cross-functional working groups in a security or compliance context.
* Language Skills: Full business fluency in English is essential; professional experience in international business environments is required.
What We Offer
* Work-Life Balance: 38.75 working hours per week with 30 days annual leave.
* Flexible Working Arrangements: Ability to work from home and flexible working hours.
* Remuneration and Benefits: Profit-sharing scheme, 13th salary, holiday pay, travel allowance, and more.
* Support in Various Life Situations: Through our partner pme Family Service, offering support in life crises and professional advice on work-related and personal matters.
* Security and Provisions: Accident insurance covering private accidents, excellent employer's contribution to your company pension scheme, and more.
* Health and Wellness: Subsidized membership in EGYM Wellpass, providing access to a wide range of sports facilities across Germany, online courses in fitness, nutrition, and meditation, and more.
* Learning and Development: Support on your individual development path with internal and external training opportunities.
* Networking: Opportunities to establish cross-team and international connections, company events, and more.
* Open Corporate Culture: A family-owned company with a drive for innovation, a culture of lived tolerance, speak-up mentality, and strong team spirit.