Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Berlin
- Working Model
- Onsite
Job Summary
In this role, you develop security strategies, implement an effective ISMS, conduct risk management, and lead incident management to strengthen the IT security architecture.
Job Technologies
Your role in the team
- Strategic responsibility for information security: development and implementation of the company-wide security strategy in collaboration with the CISO, including policies, standards, and governance structures.
- Establishment and further development of the ISMS: Implementation and maintenance of a robust Information Security Management System, as well as conducting internal audits and continuous optimization of security-related processes.
- Further development of the security architecture: You identify technical and organizational improvement potentials, continuously develop existing processes and systems, and thus contribute to a future-proof IT security architecture.
- Risk Management & Vulnerability Analysis: Identification, assessment, and mitigation of risks, vulnerabilities, and threats, including the execution of penetration tests and the implementation of remedial measures.
- Management of security incidents: responsibility for the entire incident management process, as well as active participation in the response and investigation of security incidents.
- Monitoring, Reporting & Communication: Oversight of compliance with security policies, industry standards (e.g., ISO, NIST, CIS), and legal regulations, as well as the creation of meaningful reports, KPIs, and decision templates for management, and clear communication of security-related topics to technical and non-technical stakeholders.
- Training & Awareness: Development and implementation of information security training to raise awareness among all employees about cybersecurity risks and protective measures.
- Collaboration & Leadership: Technical management of the Information Security Team, close coordination with internal departments, international partner organizations, and participation in the evaluation of suppliers within the framework of security risk management.
This text has been machine translated. Show original
Our expectations of you
Qualifications
- Technical expertise in IT security processes and IT system architectures, particularly in the areas of networks, cloud, operating systems, and specialized applications. Additionally, you have good technical knowledge of security principles and practices.
- Pragmatic and self-reliant working style: ability to prioritize, think pragmatically, and act confidently even in challenging situations.
- Team orientation and interdisciplinary collaboration: Not a lone wolf mentality, but actively bringing together topics, resources, and teams as well as organizing support and exchange at an early stage.
- Leadership and communication skills: Flexible and assertive communication in German and English, as well as active participation in personal and professional development.
Experience
- Professional expertise and certifications: Several years of professional experience in the aforementioned field as well as solid knowledge or certifications such as ISO 27001 Lead Implementer, CISM, CISSP, or comparable.
This text has been machine translated. Show original
Benefits
Health, Fitness & Fun
Work-Life-Integration
Topics that you deal with on the job
Job Locations
This is your employer
Taylorwessing
Taylor Wessing is a leading international law firm with a single-minded approach: to help our clients succeed.
Description
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Law, Finance, Economics
Information Security Manager
- Location
- Berlin
- Working Model
- Onsite
- Diversity
- Open for all genders
