Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Garching bei München
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you will develop strategic security strategies, implement an Information Security Management System (ISMS), and coordinate security measures to ensure information security within the organization.
Job Technologies
Your role in the team
- As (Chief) Information Security Officer, you are responsible for the strategic and operational development, the continuous improvement, and the global management of information and cybersecurity within the company.
- They ensure that security risks are identified early, effectively managed, and that regulatory as well as internal requirements are sustainably met.
- Your main responsibilities include: developing and implementing a company-wide information security strategy in close coordination with management, IT, and business units.
- Development, enhancement, and management of the Information Security Management System (ISMS), including relevant policies, standards, and control mechanisms.
- Responsibility for the identification, assessment, and management of cyber and information security risks.
- Ensuring compliance with internal and external requirements, e.g., regarding NIS2, ISO 27001, audit requirements, customer demands, and compliance regulations.
- Establishment and further development of processes in the areas of Governance, Risk & Compliance, Security Operations, Incident Management, Awareness, and Third-Party Security.
- Management and monitoring of technical and organizational security measures to protect information, systems, networks, and digital business processes.
- Development of an effective security reporting system with transparent communication of maturity level, risks, measures, and progress to management and relevant committees.
- Consulting of the executive board, management, executives, and specialist departments on all security-related issues.
- Coordination of internal and external stakeholders, service providers, auditors, as well as authorities and customers if applicable, within the security context.
- Further development of security awareness within the company through training sessions, campaigns, and targeted awareness measures.
- Responsibility for preparing, coordinating, and supporting audits, assessments, and security reviews.
- Leadership or technical management of security functions, security initiatives, and external partners on a global level.
- The role ensures that information security is effectively embedded as a business-critical management task and that the company maintains an appropriate, risk-oriented, and future-proof security level.
This text has been machine translated. Show original
Our expectations of you
Education
- Successfully completed studies in Computer Science, Business Informatics, Information Security, or a comparable qualification.
Qualifications
- In-depth knowledge of relevant standards and regulatory requirements, particularly ISO 27001, NIS2, IT risk management, compliance, and audit requirements.
- Good knowledge in the areas of Security Governance, Risk & Compliance, Incident Management, Awareness, Third-Party Security, and ideally Security Operations.
- Ability to prepare complex technical and organizational matters in an understandable, target group-appropriate, and management-ready manner.
- Structured, risk-oriented, and solution-focused working approach with a high level of implementation strength.
- Strong communication skills, persuasiveness, and confident demeanor at all levels of the organization.
- Excellent written and spoken proficiency in German and English.
Experience
- Several years of professional experience in a responsible role in the field of information security, cyber security, IT risk, or IT governance.
- Verifiable experience in the development, enhancement, and management of an Information Security Management System (ISMS).
- Experience in the development and implementation of security strategies, policies, standards, and control mechanisms.
- Experience in collaborating with top management, internal stakeholders, auditors, clients, and external service providers.
- Experience in an international corporate environment as well as in collaboration with global teams is an advantage.
This text has been machine translated. Show original
What we offer
- Working hours that accommodate your individual needs: customized part-time models, flexible working hours, remote work, 30 vacation days + 2 paid days off (December 24th and 31st), travel time counts as working hours.
- We enrich your life with attractive perks: special leaves & financial allowances, corporate benefits, hardware leasing program, employer-subsidized canteen, insurances, e.g., disability insurance.
- Your health is important to us: Paid doctor visits, JobRad, EGym Wellpass.
- Working together and celebrating together: anniversary parties, corporate events, company runs.
This text has been machine translated. Show original
Benefits
Health, Fitness & Fun
Topics that you deal with on the job
Job Locations
This is your employer
Suss Microtec Lithography Gmbh
SÜSS MicroTec is a leading manufacturer of equipment and process solutions for microstructuring in the semiconductor industry and related markets. With more than 60 years of experience, we offer a wide range of products and solutions for backend lithography, wafer bonding, and photomask cleaning.
Description
- Company Size
- 250+ Employees
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Industry, Production
Information Security Officer
- Location
- Garching bei München
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
