Job
- Level
- Senior
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Bielefeld
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you will develop the information security strategy, establish an ISMS, identify risks, and implement risk mitigation measures. You will support departments on security issues and coordinate audits and security projects.
Your role in the team
- Strategy Development: Develop the information security strategy in coordination with management, define specific security objectives, and drive their implementation within the company.
- ISMS Management: Establish, operate, and continuously develop the Information Security Management System (ISMS) according to ISO/IEC 27001, and monitor the effectiveness of the implemented measures.
- Risk Management: Identify security risks in IT, OT, and production-related environments, assess them, and implement appropriate technical and organizational measures to minimize risks.
- Consulting & Implementation: Support departments with security-related issues and develop practical solutions for requirements in the context of digitally connected products and processes.
- Audit management: Plan, coordinate, and oversee security audits, vulnerability assessments, and penetration tests, as well as track the implementation of identified improvement measures.
- Organizational Development: Develop and update security policies, emergency and crisis plans, conduct training and awareness initiatives to strengthen security consciousness, and further develop the organization.
- Compliance: Ensure adherence to regulatory and legal requirements, particularly regarding NIS2, CRA, and GDPR, and provide appropriate evidence and documentation.
- Service Provider Management: Coordinate external service providers, security consultants, and government contacts, as well as manage security-related projects and measures.
- Collaboration: Work together with IT, OT, Development, Procurement, HR, and other functions to integrate security requirements into processes and promote a sustainable security culture within the company.
This text has been machine translated. Show original
Our expectations of you
Education
- Completed degree in (Business) Informatics, IT Security, Engineering or a comparable qualification.
Qualifications
- In-depth knowledge of IT security architectures, network security, OT security, data protection, as well as relevant standards and regulations.
- Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer/Auditor are advantageous.
- Analytical and structured thinking, high integrity, and sense of responsibility.
- Persuasiveness and assertiveness at all levels of hierarchy.
- Very good spoken and written English skills.
Experience
- Several years of professional experience in the field of information security, ideally in an industrial environment or manufacturing company.
- ISMS competence: Experience in establishing and operating an Information Security Management System (ISMS).
This text has been machine translated. Show original
What we offer
- Attractive salary.
- Flexible working hours.
- Additional vacation days.
- Mobile working.
- Canteen & meal allowance.
- Occupational physician & preventive care.
- Further education & coaching.
- Special payments & bonuses.
- Company pension scheme.
- Corporate Benefits.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Food & Drink
Health, Fitness & Fun
Topics that you deal with on the job
Job Locations
This is your employer
BOGE KOMPRESSOREN Otto Boge GmbH & Co. KG
With the experience of more than 110 years, BOGE KOMPRESSOREN Otto Boge GmbH & Co. KG is one of the oldest manufacturers of compressors and compressed air systems in Germany. We focus on long-term strategies and are a responsive partner for our customers at all times.
Description
- Founding year
- 1907
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Industry, Production, Engineering Industry