dgrp Diconium Group GmbH
Information Security Manager(m/w/x)
Vollzeitmit HomeofficeManagement
Stuttgart
Neuer Job?Nejo!
Dein persönlicher KI-Karriere-Agent
ONOnventis
IT Compliance & Information Security Manager(m/w/x)
Stuttgart
Vollzeitmit HomeofficeBerufserfahren
Nejo KI-Zusammenfassung
Developing and operating an ISMS for a European SaaS provider, translating ISO 27001, NIS2, and DORA guidelines into processes. Practical ISMS experience according to ISO/IEC 27001 required. Hybrid work, job ticket, and jobrad leasing.
Anforderungen
- Professional experience in information security, IT compliance, IT risk management, IT audit, or GRC
- Practical experience with ISMS according to ISO/IEC 27001
- Good understanding of DORA, NIS2, GDPR, and comparable frameworks
- Experience in preparing for and supporting audits and reviews
- Ability to translate regulatory requirements into pragmatic processes, controls, and measures
- Strong communication skills in German and English
- Structured, well-documented, and implementation-oriented approach
- High degree of personal responsibility
- Certifications like ISO 27001 Lead Implementer or Lead Auditor, CISM, CISSP, or comparable qualifications are desirable
Aufgaben
- Manage and develop Information Security Management System (ISMS)
- Ensure compliance with regulatory, legal, and customer requirements
- Coordinate documentation and audits for ISMS
- Translate ISO 27001, NIS2, DORA, SOC/audit, and AI governance guidelines into processes
- Operate and enhance ISMS based on ISO/IEC 27001
- Develop robust policies, standards, controls, and evidence
- Analyze new regulatory requirements
- Translate regulatory requirements into concrete measures and roadmaps
- Coordinate internal and external audits and certifications
- Prepare supporting documentation for audits
- Serve as primary point of contact for auditors, customers, and management
- Conduct risk analyses and assess control gaps
- Track measures to sustainable implementation
- Collaborate with Engineering, Cloud Operations, Legal, Data Protection, and Product teams
- Maintain and improve IT-related internal control system
- Perform documentation, effectiveness checks, and exception handling
- Provide management reporting
- Evaluate service providers and cloud providers for compliance and security
- Plan and coordinate awareness and training initiatives
- Support structured classification of AI use cases and systems
- Ensure compliance with EU AI Act requirements
Berufserfahrung
- ca. 1 - 4 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Deutsch – verhandlungssicher
- Englisch – verhandlungssicher
Tools & Technologien
- ISO/IEC 27001
- DORA
- NIS2
- GDPR
Benefits
Flexibles Arbeiten
- Hybrid work model
Moderne Technikausstattung
- Modern tools and equipment
Parkplatz & Pendelvorteile
- Free parking
Öffi Tickets
- Job Ticket
Firmenfahrrad
- JobRad leasing
Gesundheits- & Fitnessangebote
- Urban Sports membership
Snacks & Getränke
- Fresh fruit
- Drinks
Gratis oder Vergünstigte Mahlzeiten
- Meal subsidies
Mentoring & Coaching
- Structured onboarding
Weiterbildungsangebote
- Training programs
- Language courses
Lockere Unternehmenskultur
- Friendly team spirit
Sonstige Vorteile
- Clear structures
Team Events & Ausflüge
- Regular team events
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Onventis erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Gefällt dir diese Stelle?
BetaDein Career Agent findet täglich ähnliche Jobs für dich.
Noch nicht perfekt?
- CANCOM
Information Security Manager(m/w/x)
Vollzeitmit HomeofficeManagementMünchen, Berlin, Frankfurt am Main, Langenfeld (Rheinland), Leipzig, Stuttgart, Hannover, Aachen, Hamburg, Köln - Flip App
GRC Analyst(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenStuttgart, Berlin - Flip GmbH
GRC Analyst(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenStuttgart, Berlin - Creditplus Bank
Senior IT Security Manager(m/w/x)
Vollzeitmit HomeofficeSeniorStuttgart
ONOnventis
IT Compliance & Information Security Manager(m/w/x)
Stuttgart
Vollzeitmit HomeofficeBerufserfahren
Nejo KI-Zusammenfassung
Developing and operating an ISMS for a European SaaS provider, translating ISO 27001, NIS2, and DORA guidelines into processes. Practical ISMS experience according to ISO/IEC 27001 required. Hybrid work, job ticket, and jobrad leasing.
Anforderungen
- Professional experience in information security, IT compliance, IT risk management, IT audit, or GRC
- Practical experience with ISMS according to ISO/IEC 27001
- Good understanding of DORA, NIS2, GDPR, and comparable frameworks
- Experience in preparing for and supporting audits and reviews
- Ability to translate regulatory requirements into pragmatic processes, controls, and measures
- Strong communication skills in German and English
- Structured, well-documented, and implementation-oriented approach
- High degree of personal responsibility
- Certifications like ISO 27001 Lead Implementer or Lead Auditor, CISM, CISSP, or comparable qualifications are desirable
Aufgaben
- Manage and develop Information Security Management System (ISMS)
- Ensure compliance with regulatory, legal, and customer requirements
- Coordinate documentation and audits for ISMS
- Translate ISO 27001, NIS2, DORA, SOC/audit, and AI governance guidelines into processes
- Operate and enhance ISMS based on ISO/IEC 27001
- Develop robust policies, standards, controls, and evidence
- Analyze new regulatory requirements
- Translate regulatory requirements into concrete measures and roadmaps
- Coordinate internal and external audits and certifications
- Prepare supporting documentation for audits
- Serve as primary point of contact for auditors, customers, and management
- Conduct risk analyses and assess control gaps
- Track measures to sustainable implementation
- Collaborate with Engineering, Cloud Operations, Legal, Data Protection, and Product teams
- Maintain and improve IT-related internal control system
- Perform documentation, effectiveness checks, and exception handling
- Provide management reporting
- Evaluate service providers and cloud providers for compliance and security
- Plan and coordinate awareness and training initiatives
- Support structured classification of AI use cases and systems
- Ensure compliance with EU AI Act requirements
Berufserfahrung
- ca. 1 - 4 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Deutsch – verhandlungssicher
- Englisch – verhandlungssicher
Tools & Technologien
- ISO/IEC 27001
- DORA
- NIS2
- GDPR
Benefits
Flexibles Arbeiten
- Hybrid work model
Moderne Technikausstattung
- Modern tools and equipment
Parkplatz & Pendelvorteile
- Free parking
Öffi Tickets
- Job Ticket
Firmenfahrrad
- JobRad leasing
Gesundheits- & Fitnessangebote
- Urban Sports membership
Snacks & Getränke
- Fresh fruit
- Drinks
Gratis oder Vergünstigte Mahlzeiten
- Meal subsidies
Mentoring & Coaching
- Structured onboarding
Weiterbildungsangebote
- Training programs
- Language courses
Lockere Unternehmenskultur
- Friendly team spirit
Sonstige Vorteile
- Clear structures
Team Events & Ausflüge
- Regular team events
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Onventis erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Gefällt dir diese Stelle?
BetaDein Career Agent findet täglich ähnliche Jobs für dich.
Über das Unternehmen
Onventis
Branche
IT
Beschreibung
Das Unternehmen ist seit 2000 Cloud-Pionier für die digitale Transformation von Einkaufs- und Finanzprozessen.
Noch nicht perfekt?
- dgrp Diconium Group GmbH
Information Security Manager(m/w/x)
Vollzeitmit HomeofficeManagementStuttgart - CANCOM
Information Security Manager(m/w/x)
Vollzeitmit HomeofficeManagementMünchen, Berlin, Frankfurt am Main, Langenfeld (Rheinland), Leipzig, Stuttgart, Hannover, Aachen, Hamburg, Köln - Flip App
GRC Analyst(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenStuttgart, Berlin - Flip GmbH
GRC Analyst(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenStuttgart, Berlin - Creditplus Bank
Senior IT Security Manager(m/w/x)
Vollzeitmit HomeofficeSeniorStuttgart