GWP Gesellschaft für Werkstoffprüfung mbH
Information security officer / Data Governance Manager(m/w/x)
Vollzeitnur vor OrtBerufserfahren
München
Neuer Job?Nejo!
Die KI-Suchmaschine für Jobs
IDIDEALworks GmbH
Information Security Officer(m/w/x)
München
VollzeitVor OrtBerufserfahren
Nejo KI-Zusammenfassung
Implementing and maintaining ISO 27001 and TISAX certifications for a deep tech company in logistics automation. Hands-on ISO 27001 implementation and TISAX experience required. 30 vacation days, annual personal development budget.
Anforderungen
- Bachelor’s degree in Information Technology, Computer Science, or related field
- 4 to 6 years work experience in information security, compliance, or IT governance
- Hands-on experience with ISO 27001 implementation and audits
- Experience in TISAX requirements and automotive security standards
- Strong understanding of risk management, threat modelling, and vulnerability management
- Experience with penetration testing tools and methodologies
- Knowledge of infrastructure hardening and application security best practices
- Deep understanding of regulatory frameworks and audit processes
- Experience maintaining compliance documentation and evidence
- Excellent problem-solving and analytical skills
- Strong verbal and written communication skills in English, German is a plus
- Ability to work in a highly agile, fast-paced environment
Aufgaben
- Implement and maintain ISO 27001 and TISAX certifications
- Coordinate internal and external audit preparation
- Maintain the Statement of Applicability (SoA) and evidence for controls
- Ensure adherence to regulatory and contractual security requirements
- Develop and maintain compliance documentation, policies, and procedures
- Lead security incident response and document incidents
- Conduct root cause analysis and follow up on corrective actions
- Manage the end-to-end Business Continuity Planning (BCP) process
- Maintain BCP documentation and conduct periodic drills
- Activate BCP during major incidents or disruptions
- Coordinate communication with stakeholders during BCP activation
- Identify, assess, prioritize, and track security risks
- Monitor execution of mitigation plans
- Perform and review threat modeling for critical systems
- Oversee data classification and define retention periods
- Support infrastructure hardening and application security initiatives
- Enhance the security playbook AI model for incident response
- Plan and coordinate penetration testing and vulnerability assessments
- Prioritize and follow up on mitigation of penetration test findings
- Act as a security and compliance subject matter expert for customer-facing teams
- Respond to security questionnaires and RFPs
Berufserfahrung
- 4 - 6 Jahre
Ausbildung
- Bachelor-Abschluss
Sprachen
- Englisch – verhandlungssicher
- Deutsch – Grundkenntnisse
Benefits
Attraktive Vergütung
- Above-average pay
Boni & Prämien
- Bonus scheme
Sonstige Zulagen
- Annual personal development budget
Mehr Urlaubstage
- 30 vacation days per year
Mitarbeiterrabatte
- Exciting corporate benefits
Betriebliche Altersvorsorge
- Attractive company pension scheme
Team Events & Ausflüge
- Regular team events
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens IDEALworks GmbH erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Noch nicht perfekt?
- Qwist GmbH
Information Security Engineer(m/w/x)
Vollzeitnur vor OrtBerufserfahrenBerlin, München - Huawei Research Center Germany & Austria
Intelligent Vehicle Cybersecurity Standardization Engineer(m/w/x)
Vollzeitnur vor OrtSeniorMünchen - Hawk
Senior Information Security Analyst(m/w/x)
Vollzeitnur vor OrtSeniorMünchen - Huawei Research Center Germany & Austria
Security Incident and Emergency Response - Legal & Compliance Liaison(m/w/x)
VollzeitFreelancenur vor OrtBerufserfahrenMünchen
IDIDEALworks GmbH
Information Security Officer(m/w/x)
München
VollzeitVor OrtBerufserfahren
Nejo KI-Zusammenfassung
Implementing and maintaining ISO 27001 and TISAX certifications for a deep tech company in logistics automation. Hands-on ISO 27001 implementation and TISAX experience required. 30 vacation days, annual personal development budget.
Anforderungen
- Bachelor’s degree in Information Technology, Computer Science, or related field
- 4 to 6 years work experience in information security, compliance, or IT governance
- Hands-on experience with ISO 27001 implementation and audits
- Experience in TISAX requirements and automotive security standards
- Strong understanding of risk management, threat modelling, and vulnerability management
- Experience with penetration testing tools and methodologies
- Knowledge of infrastructure hardening and application security best practices
- Deep understanding of regulatory frameworks and audit processes
- Experience maintaining compliance documentation and evidence
- Excellent problem-solving and analytical skills
- Strong verbal and written communication skills in English, German is a plus
- Ability to work in a highly agile, fast-paced environment
Aufgaben
- Implement and maintain ISO 27001 and TISAX certifications
- Coordinate internal and external audit preparation
- Maintain the Statement of Applicability (SoA) and evidence for controls
- Ensure adherence to regulatory and contractual security requirements
- Develop and maintain compliance documentation, policies, and procedures
- Lead security incident response and document incidents
- Conduct root cause analysis and follow up on corrective actions
- Manage the end-to-end Business Continuity Planning (BCP) process
- Maintain BCP documentation and conduct periodic drills
- Activate BCP during major incidents or disruptions
- Coordinate communication with stakeholders during BCP activation
- Identify, assess, prioritize, and track security risks
- Monitor execution of mitigation plans
- Perform and review threat modeling for critical systems
- Oversee data classification and define retention periods
- Support infrastructure hardening and application security initiatives
- Enhance the security playbook AI model for incident response
- Plan and coordinate penetration testing and vulnerability assessments
- Prioritize and follow up on mitigation of penetration test findings
- Act as a security and compliance subject matter expert for customer-facing teams
- Respond to security questionnaires and RFPs
Berufserfahrung
- 4 - 6 Jahre
Ausbildung
- Bachelor-Abschluss
Sprachen
- Englisch – verhandlungssicher
- Deutsch – Grundkenntnisse
Benefits
Attraktive Vergütung
- Above-average pay
Boni & Prämien
- Bonus scheme
Sonstige Zulagen
- Annual personal development budget
Mehr Urlaubstage
- 30 vacation days per year
Mitarbeiterrabatte
- Exciting corporate benefits
Betriebliche Altersvorsorge
- Attractive company pension scheme
Team Events & Ausflüge
- Regular team events
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens IDEALworks GmbH erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Über das Unternehmen
IDEALworks GmbH
Branche
IT
Beschreibung
The company is a forward-thinking deep tech company enabling the future of logistics and industrial automation.
Noch nicht perfekt?
- GWP Gesellschaft für Werkstoffprüfung mbH
Information security officer / Data Governance Manager(m/w/x)
Vollzeitnur vor OrtBerufserfahrenMünchen - Qwist GmbH
Information Security Engineer(m/w/x)
Vollzeitnur vor OrtBerufserfahrenBerlin, München - Huawei Research Center Germany & Austria
Intelligent Vehicle Cybersecurity Standardization Engineer(m/w/x)
Vollzeitnur vor OrtSeniorMünchen - Hawk
Senior Information Security Analyst(m/w/x)
Vollzeitnur vor OrtSeniorMünchen - Huawei Research Center Germany & Austria
Security Incident and Emergency Response - Legal & Compliance Liaison(m/w/x)
VollzeitFreelancenur vor OrtBerufserfahrenMünchen