Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Gosheim
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you will implement the Cyber Resilience Act requirements, manage the information security management system, conduct risk analyses, and coordinate comprehensive security assessments and training.
Job Technologies
Your role in the team
- Implementation and monitoring of the requirements of the Cyber Resilience Act (CRA) and the NIS2 Directive for our digital products and networked machine components.
- Further development and maintenance of the Information Security Management System (ISMS).
- Conducting risk and threat analyses throughout the entire product lifecycle (design, development, operation, maintenance).
- Support the development team with product security topics and take responsibility for the IT security of the HERMLE OT environment.
- Development and implementation of 'Secure by Design' and 'Secure by Default' strategies in collaboration with the software development IT and product development.
- Planning, execution, and documentation of software and penetration tests on in-house developed software.
- Coordination of vulnerability management and incident response processes.
- Training and awareness-raising of employees on IT security requirements and CRA-/NIS2-related topics.
- Collaboration with external inspection and certification bodies and participation in conformity assessment procedures (with a focus on CE).
This text has been machine translated. Show original
Our expectations of you
Education
- Completed degree in Computer Science, IT Security, Electrical Engineering, or a comparable qualification.
Qualifications
- Solid knowledge of IT security standards (e.g., ISO/IEC 27001, IEC 62443) and regulatory requirements (especially CRA).
- Analytical thinking, structured working style, and high sense of responsibility.
- Strong communication skills and the ability to work across disciplines.
- Excellent spoken and written proficiency in German and English.
Experience
- Experience in industrial IT, OT security, or mechanical engineering is advantageous.
This text has been machine translated. Show original
What we offer
- A secure and long-term employment in a publicly traded family-owned company with flat hierarchies.
- Attractive and fair compensation, holiday and Christmas bonuses, as well as profit sharing.
- 30 days of vacation per year, flexible working hours without core time, and home office.
- Company restaurant with discounted lunch as well as free water and tea.
- Health benefits, Jobrad, employee discounts, and company events.
- Individual training opportunities for your professional as well as personal development.
This text has been machine translated. Show original
Benefits
More net
Work-Life-Integration
Health, Fitness & Fun
Topics that you deal with on the job
Job Locations
This is your employer
Hermle AG
The Berthold Hermle Machine Factory AG, based in Gosheim, is a leading company in the manufacturing of CNC milling machines and machining centers. With a workforce of over 1,300 employees, it serves numerous industries worldwide.
Description
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Engineering Industry
IT Security Officer with a focus on CRA
- Location
- Gosheim
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
