Logo Elisabeth Vinzenz Verbund GmbH

Information Security Officer, Central Region

Elisabeth Vinzenz Verbund GmbH

Job

  • Level
    Experienced
  • Job Field
    IT, Security
  • Employment Type
    Part Time/Full Time
  • Contract Type
    Permanent employment
  • Location
    Magdeburg, Dresden
  • Working Model
    Hybrid, Onsite

    • Job Summary

    In this position, you will lead information security across several hospitals, develop security concepts, conduct audits, and implement solutions according to ISO 27001 and KRITIS-V requirements.

    Job Technologies

    Your role in the team

    • As the Information Security Officer, you will assume the technical leadership of information security across the four hospitals in the Central Region (Dresden, Halle, Halle-Dölau, and Magdeburg) of the Elisabeth Vinzenz Group.
    • A particular focus of the role is on the KRITIS-relevant hospital locations in Halle and the effective implementation of the requirements from the KRITIS regulation.
    • At the same time, you contribute to aligning information security across the region to a consistently high standard.
    • In close coordination with the CISO, you manage security-related risks, prioritize appropriate measures, and support their sustainable integration into the organizations.
    • In this role, you act as the central interface between management, relevant stakeholders, and operational implementation.
    • You advise on technical, procedural, and organizational issues of information security.
    • You conduct observations in the clinical departments to understand processes and workflows.
    • You maintain close contact with the staff of the stations, functional services, and performance departments, and you are the primary contact for security-related questions.
    • You create security concepts.
    • You analyze risks and support the development of information security concepts according to ISO 27001 and B3S.
    • You assist in the implementation of a Business Continuity Management System.
    • You assist in the planning, execution, and follow-up of emergency tests and crisis exercises.
    • You apply your expertise strategically to address current challenges such as clinical data transmission as well as requirements from NIS2, DACHG, and KRITISV.
    • You actively incorporate information security requirements into company-wide IT projects and ensure their consideration in all project phases.
    • You analyze and evaluate new hardware and software in accordance with internal guidelines.
    • You analyze and assess security-related incidents and conduct risk analyses.
    • You conduct internal audits independently and accompany external audits.
    • You conduct occasion-specific awareness training sessions.
    • You are ready for business trips within your region and occasionally nationwide in Germany.

    This text has been machine translated. Show original

    Our expectations of you

    Education

    • A completed degree (e.g., Medical Informatics, Medical Technology, Computer Science, IT Security, Security Management, Business Informatics) or a comparable qualification with relevant professional experience in information security.

    Qualifications

    • Extensive expertise in the secure application of relevant standards and regulatory requirements, particularly ISO 27001, KRITISV, and BS3.
    • Strong communication skills and the ability to convey even complex issues clearly and convincingly.
    • Willingness to observe in clinical specialties to analyze processes and workflows.
    • A confident, negotiation-proof, and resilient demeanor.
    • Class B driver's license.

    Experience

    • Extensive experience in consulting and implementing Information Security Management Systems.
    • Experience in dealing with regulatory requirements such as NIS2 and KRITIS-DachG.
    • Extensive experience in the audit environment as well as a strong understanding of IT risks, regulatory requirements, and their appropriate assessment.

    This text has been machine translated. Show original

    What we offer

    • The position is to be filled on a full-time or part-time basis with a minimum of 20 hours per week.
    • Flexible working hours within a flextime model as well as the possibility to work partly remotely from home (home office).
    • An attractive compensation package with comprehensive social benefits (e.g., additional retirement provisions).
    • Opportunity for personal and professional development.
    • Additional optional benefits, such as discounts on the job ticket and corporate bike leasing.

    This text has been machine translated. Show original

    Benefits

    Work-Life-Integration

    Topics that you deal with on the job

    Job Locations

    • Location Dresden

      Sachsen

      Germany

    • Location Magdeburg

      Sachsen-Anhalt

      Germany

    This is your employer

    Elisabeth Vinzenz Verbund GmbH

    Elisabeth Vinzenz Verbund GmbH

    Der Elisabeth Vinzenz Verbund (EVV) gehört bundesweit zu den größten christlichen Trägerverbünden von Krankenhäusern und weiteren Einrichtungen im Gesundheits- und Sozialwesen mit 15 Krankenhaus-Standorten in sieben Bundesländern.

    Description

  • Founding year
    2014
  • Company Type
    Established Company
  • Working Model
    Hybrid, Onsite
  • Industry
    Healthcare, Social Sector
    • Logo Elisabeth Vinzenz Verbund GmbH

    Information Security Officer, Central Region

    Elisabeth Vinzenz Verbund GmbH
    Location
    Magdeburg, Dresden
    Working Model
    Hybrid, Onsite
    Diversity
    Open for all genders

    More Jobs