Staffbase
Principal Information Security Manager(m/w/x)
Vollzeitmit HomeofficeSenior
Chemnitz, Berlin
Neuer Job?Nejo!
Dein persönlicher KI-Karriere-Agent
STStaffbase
Principle Information Security Manager(m/w/x)
Berlin, Chemnitz, Dresden
Vollzeitmit HomeofficeSenior
AI/ML
Nejo KI-Zusammenfassung
Leading ISO 27001 and SOC 2 audit cycles for a SaaS employee experience platform. Proven ownership of audit programs required. Flexible working hours, hybrid option, and yearly flex work allowance.
Anforderungen
- 5+ years InfoSec experience in SaaS/B2B tech
- Proven ownership of ISO 27001 and/or SOC 2 programs
- Representing InfoSec to enterprise customers
- Fluent in German and English
- Comfortable with AI-driven tooling and automation
- Experience supporting M&A or investor due diligence
- Background working with Legal, Procurement, Engineering
- Practical understanding of cloud security architecture
- Relevant certification: CISM, CISSP, ISO 27001
Aufgaben
- Lead ISO 27001 and SOC 2 audit cycles
- Prepare and manage audit evidence collection
- Manage auditor relationships and findings remediation
- Maintain and update the control framework
- Prepare InfoSec program for investor and M&A due diligence
- Respond to enterprise customer security questionnaires and RFPs
- Represent Staffbase in customer security reviews and audits
- Develop scalable approaches for security responses
- Maintain the risk register and drive risk treatment
- Conduct vendor security assessments for critical suppliers
- Partner with Procurement and Legal on AI-assisted reviews
- Own and update the internal security policy framework
- Design and implement security awareness programs
- Lead the incident response plan execution
- Coordinate with Engineering, Legal, and leadership during incidents
- Conduct post-incident reviews and close findings
Berufserfahrung
- 5 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Deutsch – verhandlungssicher
- Englisch – verhandlungssicher
Tools & Technologien
- ISO 27001
- SOC 2
- AI-driven tooling
- cloud security architecture
- CISM
- CISSP
Benefits
Flexibles Arbeiten
- Flexible working time models
- Hybrid work option
- Yearly flex work allowance
Attraktive Vergütung
- Attractive salary packages
- LTIP
Mehr Urlaubstage
- 31 vacation days annually
- Floating holiday
- Pro rata fully paid Fridays off during August
Betriebliche Altersvorsorge
- Company pension scheme
Sinnstiftende Arbeit
- One day off per year for supporting a social project
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Staffbase erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Gefällt dir diese Stelle?
BetaDein Career Agent findet täglich ähnliche Jobs für dich.
Noch nicht perfekt?
- Shiftmove
(Senior) Information Security Officer(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenBerlin - getolo GmbH
Information Security Lead - German Speaker(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin - Seven Education
Chief Information Security Officer (CISO)(m/w/x)
Vollzeitmit HomeofficeSeniorHamburg, Berlin, Koblenz - Moss
Information Security GRC Lead(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenBerlin
STStaffbase
Principle Information Security Manager(m/w/x)
Berlin, Chemnitz, Dresden
Vollzeitmit HomeofficeSenior
AI/ML
Nejo KI-Zusammenfassung
Leading ISO 27001 and SOC 2 audit cycles for a SaaS employee experience platform. Proven ownership of audit programs required. Flexible working hours, hybrid option, and yearly flex work allowance.
Anforderungen
- 5+ years InfoSec experience in SaaS/B2B tech
- Proven ownership of ISO 27001 and/or SOC 2 programs
- Representing InfoSec to enterprise customers
- Fluent in German and English
- Comfortable with AI-driven tooling and automation
- Experience supporting M&A or investor due diligence
- Background working with Legal, Procurement, Engineering
- Practical understanding of cloud security architecture
- Relevant certification: CISM, CISSP, ISO 27001
Aufgaben
- Lead ISO 27001 and SOC 2 audit cycles
- Prepare and manage audit evidence collection
- Manage auditor relationships and findings remediation
- Maintain and update the control framework
- Prepare InfoSec program for investor and M&A due diligence
- Respond to enterprise customer security questionnaires and RFPs
- Represent Staffbase in customer security reviews and audits
- Develop scalable approaches for security responses
- Maintain the risk register and drive risk treatment
- Conduct vendor security assessments for critical suppliers
- Partner with Procurement and Legal on AI-assisted reviews
- Own and update the internal security policy framework
- Design and implement security awareness programs
- Lead the incident response plan execution
- Coordinate with Engineering, Legal, and leadership during incidents
- Conduct post-incident reviews and close findings
Berufserfahrung
- 5 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Deutsch – verhandlungssicher
- Englisch – verhandlungssicher
Tools & Technologien
- ISO 27001
- SOC 2
- AI-driven tooling
- cloud security architecture
- CISM
- CISSP
Benefits
Flexibles Arbeiten
- Flexible working time models
- Hybrid work option
- Yearly flex work allowance
Attraktive Vergütung
- Attractive salary packages
- LTIP
Mehr Urlaubstage
- 31 vacation days annually
- Floating holiday
- Pro rata fully paid Fridays off during August
Betriebliche Altersvorsorge
- Company pension scheme
Sinnstiftende Arbeit
- One day off per year for supporting a social project
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Staffbase erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Gefällt dir diese Stelle?
BetaDein Career Agent findet täglich ähnliche Jobs für dich.
Über das Unternehmen
Staffbase
Branche
IT
Beschreibung
The company helps organizations unlock the power of inspirational communication with an AI-native Employee Experience Platform.
Noch nicht perfekt?
- Staffbase
Principal Information Security Manager(m/w/x)
Vollzeitmit HomeofficeSeniorChemnitz, Berlin - Shiftmove
(Senior) Information Security Officer(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenBerlin - getolo GmbH
Information Security Lead - German Speaker(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin - Seven Education
Chief Information Security Officer (CISO)(m/w/x)
Vollzeitmit HomeofficeSeniorHamburg, Berlin, Koblenz - Moss
Information Security GRC Lead(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenBerlin