Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Stuttgart, Karlsruhe
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you ensure compliance with information security and data protection requirements, create risk analyses and training materials, and handle audits. Additionally, you advise departments on implementing guidelines.
Job Technologies
Your role in the team
- As an Information Security Coordinator (m/f/d), you ensure on an operational level that the information security requirements according to BSI standards and the data protection requirements according to the General Data Protection Regulation (GDPR) are met for the audit services and contribution collection. You coordinate closely with the DRV Baden-Württemberg's Information Security Management (ISM), for example, on issues related to critical infrastructure assessment (KRITIS) or risk analyses.
- They design, create, and initiate documents related to information security and data protection, e.g., security concepts, risk analyses, data protection impact assessments, and recommended actions.
- You are the technical contact person for internal audits in the ISM department and internal audit. This includes preparing for KRITIS audits and handling audit assignments, audit comments, and audit findings from internal audit, supervisory authorities, or other auditing bodies.
- They prepare the requirements of the Information Security and Data Protection department in a way that the department can implement them, advise the department on the selection of specific measures, coordinate the implementation, and continuously develop them.
- They train and raise awareness among the department's employees regarding the requirements of information security as well as data protection and possible measures.
- They work on in-house (department- or cross-departmental) as well as nationwide projects.
This text has been machine translated. Show original
Our expectations of you
Education
- A successfully completed degree with an IT focus and ideally professional experience in comparable positions in the public sector or in a KRITIS company.
Qualifications
- Solid knowledge of information security, the IT-Grundschutz Compendium (BSI), and relevant data protection laws (SGB X, GDPR, and BDSG).
- Knowledge of the requirements of information security and data protection for IT systems and applications.
- Basic knowledge of agile software development methods.
- Strong knowledge in project and process management.
- The ability to understand, analyze, and communicate complex contexts and issues clearly to both professionals and non-experts.
- You are proficient in presentation and lecture techniques and are confident in handling common software products, documentation tools such as High Scout, and project management software like Jira or comparable tools.
- Willingness to undertake necessary further training.
Experience
- Experience in risk analysis and security assessment related to information security, preferably in a KRITIS environment.
This text has been machine translated. Show original
What we offer
- Freedom for autonomous work and the opportunity to co-shape significant and exciting projects.
- Further development or deepening of your individual professional and personal skills through support for externally acquired training as well as qualified internal training.
- Plannable prospects thanks to a crisis-proof and permanent position in the public sector.
- Remuneration depending on suitability and scope of responsibilities in pay grade 12 TV-TgDRV (comparable to TVöD) or pay scale A12 LBesO A in civil service employment.
- Annual special payment, company pension scheme (VBL), asset-building benefits (VL) in employment relationships.
- Subsidy for the job ticket / Germany ticket.
- Certified as a family-friendly employer with flexible working hours, remote work policy, various part-time models, and the option for job sharing.
- Consultation and support for childcare and eldercare provided by external service providers.
- Occupational health management with a variety of discounted sports programs, corporate fitness collaborations, and an in-house fitness room.
- 30 days of vacation with a five-day workweek.
- Excellent public transportation (ÖPNV) connections.
- In-house canteen, cafeteria, and salad bar.
This text has been machine translated. Show original
Benefits
More net
Work-Life-Integration
Health, Fitness & Fun
Topics that you deal with on the job
Job Locations
This is your employer
Die Deutsche Rentenversicherung
The name Deutsche Rentenversicherung is the one under which the duties of statutory pension insurance in Germany are performed by different public bodies of law in Bundesträger and Regionalträger from 1 October 2005 onwards.
Description
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Banking, Finance, Insurance