Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Bonn
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you will be responsible for developing and maintaining the information security management system, conducting risk analyses, coordinating security measures, and serving as the primary contact for internal and external stakeholders.
Your role in the team
- You are responsible for the implementation, operation, and continuous development of our Information Security Management System (ISMS) and ensure compliance with regulatory requirements derived from contracts, regulations, and banking-related standards.
- You develop, maintain, and update policies, security standards, and security objectives, ensuring their sustainable integration into the company.
- You are the central point of contact for all questions related to information security - both for internal stakeholders and for clients, partners, and external auditors.
- You plan, coordinate, and monitor information security measures, conduct risk analyses, and document the results in a traceable and audit-proof manner.
- You investigate information security incidents, coordinate security incident management, derive appropriate measures, and report to the management.
- You conduct security assessments for new software and service providers and evaluate their risks regarding information security and compliance.
- You coordinate IKS and ISO audits, support Business Continuity Management (BCM), and act as an independent control body in the second line of defense.
- You review contracts, regulatory requirements, and customer inquiries from a compliance perspective, coordinate questionnaires, and assist in implementing requirements such as DORA.
This text has been machine translated. Show original
Our expectations of you
Qualifications
- Solid knowledge in implementing information security measures, risk analyses, security incident management, and security assessments for software and IT services.
- Knowledge in data protection management, data protection coordination, or data protection compliance is advantageous.
- Understanding of established standards and frameworks such as ISO 27001, BCM, IKS as well as regulatory requirements like DORA.
- Strong analytical skills as well as a structured, self-reliant, and solution-oriented way of working.
- Strong communication skills and the ability to present complex regulatory and technical issues in an understandable manner for different stakeholders.
- Fluent in German and English, both written and spoken.
Experience
- Several years of professional experience in information security, IT risk management, compliance, or governance with proven experience in the development, operation, and further development of an Information Security Management System (ISMS).
- Experience in dealing with regulatory requirements, ideally in a banking or regulated environment, is advantageous.
- Experience in the effective use of AI tools to enhance productivity and problem-solving.
This text has been machine translated. Show original
What we offer
- A competitive salary package
- We offer a company pension scheme and support your own contributions with an attractive subsidy.
- Decide for yourself where you work most effectively. We offer a hybrid work model with two days per week in the office, and you are free to arrange the remaining days as you wish.
- We offer you 30 days of vacation per year.
- Our office at the Sprengnetter Campus, centrally located in the heart of Bad Neuenahr-Ahrweiler with a few minutes' walk to local shopping facilities and an in-house bistro, offers height-adjustable desks and a rooftop terrace overlooking the Ahrweiler vineyards.
- Urban Sports Club, regular health checks
- As an employee, you can use our Plus membership for tenants on ImmoScout24 to find a new apartment.
- We subsidize job bikes and offer free charging stations for e-bikes and electric cars.
- Comprehensive, certified, and internationally recognized training program of the Sprengnetter Academy
This text has been machine translated. Show original
Topics that you deal with on the job
Job Locations
This is your employer
Sprengnetter GmbH
Wir entwickeln eine Transaktionsplattform zur automatisierten Abwicklung des Gesamtworkflows von Immobilienleistungen. Zu unseren Kunden gehören namhafte Kreditinstitute, Versicherungen, Sparkassen, Makler und Sachverständige, die auf unsere Dienstleistungen und Produkte seit 40 Jahren vertrauen und die wir mit rund 250 Mitarbeitenden rund um die Immobilienbewertung unterstützen.
Description
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Internet, IT, Telecommunication, Construction, Real Estate, Building Services
Compliance & Information Security Manager
- Location
- Bonn
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
