Staffbase
Principle Information Security Manager(m/w/x)
Full-timeWith HomeofficeSenior
Berlin, Chemnitz, Dresden
New Job?Nejo!
Your personal AI career agent
STStaffbase
Principal Information Security Manager(m/w/x)
Chemnitz, Berlin
Full-timeWith Home OfficeSenior
AI/ML
Nejo AI Summary
Leading ISO 27001 and SOC 2 audit cycles for a SaaS Employee Experience Platform. 5+ years InfoSec experience in SaaS/B2B tech required. 31 vacation days annually, LTIP, and hybrid work.
Requirements
- 5+ years InfoSec experience in SaaS/B2B tech
- Ownership of ISO 27001 and/or SOC 2 programs
- Representing InfoSec to enterprise customers
- Fluent in German and English
- Comfortable with AI-driven tooling and automation
- Experience supporting M&A/investor due diligence
- Background working with Legal, Procurement, Engineering
- Practical understanding of cloud security architecture
- Relevant certification: CISM, CISSP, ISO 27001
Tasks
- Lead ISO 27001 and SOC 2 audit cycles
- Manage evidence collection and auditor interactions
- Remediate audit findings and update control framework
- Prepare InfoSec program for investor and M&A due diligence
- Respond to enterprise customer security questionnaires and RFPs
- Represent Staffbase in customer security reviews and audits
- Develop scalable approaches to reduce response time
- Maintain the risk register and drive risk treatment decisions
- Conduct vendor security assessments for critical suppliers
- Partner with Procurement and Legal on AI-assisted review workflows
- Own internal security policy framework and ensure compliance
- Design and implement effective security awareness programs
- Lead incident response and coordinate with relevant teams
- Conduct post-incident reviews and close findings
- Report to SVP Business Operations & Transformation
- Collaborate with Legal, Procurement, and Engineering
- Optimize InfoSec function for efficiency and intelligence
Work Experience
- 5 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- German – Business Fluent
- English – Business Fluent
Tools & Technologies
- ISO 27001
- SOC 2
- AI-driven tooling
- cloud security architecture
- CISM
- CISSP
Benefits
Bonuses & Incentives
- LTIP (unit-based Long Term Incentive Plan)
Flexible Working
- Flexible working time models
- Hybrid work option
- Yearly flex work allowance
More Vacation Days
- 31 vacation days annually
- Floating holiday
- Pro rata fully paid Fridays off during August
Retirement Plans
- Company pension scheme
Purpose-Driven Work
- One day off per year for supporting a social project
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Staffbase and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
Not a perfect match?
- Staffbase
Security Engineer(m/w/x)
Full-timeWith HomeofficeNot specifiedChemnitz - GISA GmbH
Interne:r Auditor:in(m/w/x)
Full-timeWith HomeofficeJuniorChemnitz, Leipzig, Halle (Saale) - msg nexinsure ag
Senior Softwareentwickler(m/w/x)
Full-time/Part-timeWith HomeofficeSeniorChemnitz, Hamburg, Köln - Bechtle GmbH & Co. KG Chemnitz
IT System Engineer Security(m/w/x)
Full-timeWith HomeofficeExperiencedChemnitz, Dresden
STStaffbase
Principal Information Security Manager(m/w/x)
Chemnitz, Berlin
Full-timeWith Home OfficeSenior
AI/ML
Nejo AI Summary
Leading ISO 27001 and SOC 2 audit cycles for a SaaS Employee Experience Platform. 5+ years InfoSec experience in SaaS/B2B tech required. 31 vacation days annually, LTIP, and hybrid work.
Requirements
- 5+ years InfoSec experience in SaaS/B2B tech
- Ownership of ISO 27001 and/or SOC 2 programs
- Representing InfoSec to enterprise customers
- Fluent in German and English
- Comfortable with AI-driven tooling and automation
- Experience supporting M&A/investor due diligence
- Background working with Legal, Procurement, Engineering
- Practical understanding of cloud security architecture
- Relevant certification: CISM, CISSP, ISO 27001
Tasks
- Lead ISO 27001 and SOC 2 audit cycles
- Manage evidence collection and auditor interactions
- Remediate audit findings and update control framework
- Prepare InfoSec program for investor and M&A due diligence
- Respond to enterprise customer security questionnaires and RFPs
- Represent Staffbase in customer security reviews and audits
- Develop scalable approaches to reduce response time
- Maintain the risk register and drive risk treatment decisions
- Conduct vendor security assessments for critical suppliers
- Partner with Procurement and Legal on AI-assisted review workflows
- Own internal security policy framework and ensure compliance
- Design and implement effective security awareness programs
- Lead incident response and coordinate with relevant teams
- Conduct post-incident reviews and close findings
- Report to SVP Business Operations & Transformation
- Collaborate with Legal, Procurement, and Engineering
- Optimize InfoSec function for efficiency and intelligence
Work Experience
- 5 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- German – Business Fluent
- English – Business Fluent
Tools & Technologies
- ISO 27001
- SOC 2
- AI-driven tooling
- cloud security architecture
- CISM
- CISSP
Benefits
Bonuses & Incentives
- LTIP (unit-based Long Term Incentive Plan)
Flexible Working
- Flexible working time models
- Hybrid work option
- Yearly flex work allowance
More Vacation Days
- 31 vacation days annually
- Floating holiday
- Pro rata fully paid Fridays off during August
Retirement Plans
- Company pension scheme
Purpose-Driven Work
- One day off per year for supporting a social project
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Staffbase and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Like this job?
BetaYour Career Agent finds similar jobs for you every day.
About the Company
Staffbase
Industry
IT
Description
The company helps organizations unlock the power of inspirational communication with an AI-native Employee Experience Platform.
Not a perfect match?
- Staffbase
Principle Information Security Manager(m/w/x)
Full-timeWith HomeofficeSeniorBerlin, Chemnitz, Dresden - Staffbase
Security Engineer(m/w/x)
Full-timeWith HomeofficeNot specifiedChemnitz - GISA GmbH
Interne:r Auditor:in(m/w/x)
Full-timeWith HomeofficeJuniorChemnitz, Leipzig, Halle (Saale) - msg nexinsure ag
Senior Softwareentwickler(m/w/x)
Full-time/Part-timeWith HomeofficeSeniorChemnitz, Hamburg, Köln - Bechtle GmbH & Co. KG Chemnitz
IT System Engineer Security(m/w/x)
Full-timeWith HomeofficeExperiencedChemnitz, Dresden