Information Security Manager (m/f/d)
Aschaffenburg, Berlin
PSI Software
Since 1969 PSI develops and integrates software solutions and control systems for the network infrastructures and complex production and logistics processes.The PSI Group develops software products for optimizing the flow of energy and materials for utilities and industry. As an independent software producer with more than 2,300 employees, PSI has been a technology leader since 1969 for process control systems that ensure sustainable energy supply, mobility and production by combining AI methods with industrially proven optimization methods. The innovative industry products can be operated on-premises or in the cloud.
Information Security Manager (m/f/d)
Typ: full-time/Part-time Region: Aschaffenburg, Berlin Business Unit: PSI Software SE
Job details
- Support, drive and improve PSI’s information security strategy on a wide range of topics
- Shape and improve our information Security Management System (ISMS) in a sustainable and feasible way
- Perform information security governance related tasks (e.g. policy creation and management for all information security topics, process creation and improvements, information security framework improvements)
- Requirements management for information security (e.g. around ISO 27001, NIST CSF, KRITIS, ISO 27017, ISO 27019)
- Support information security reviews and reporting (e.g. maturity assessment)
- Perform and improve information security risk management activities (e.g. risk identification, evaluation and assessment) from a general perspective
- Stakeholder communication and collaboration across all our business units and legal entities on all levels (engineers, engineering managers, technical product managers, product owners, leadership, etc.)
- Participate in information security relevant due diligence activities (e.g. vendor and product assessments)
- Participate and support in relevant audit preparations such as for ISO 27001 and TISAX
- Strengthen the information security and data compliance culture and support information security knowledge management
- Assist in incident management activities
Requirements
- InfoSec Management and ISMS (ISO 27001, NIST, etc.) knowledge
- General business and organizational understanding best in software development industry
- Experience in information security governance activities (e.g. create, improve and implement processes, policies as well as perform control activities)
- Strategic thinking to ensure we follow a sustainable way and don’t forget the big picture
- Risk Management experience
- General cloud security knowledge (GCP and Office365)
- Analytic skills: you think things through and are a thought leader
- Ownership mindset for tasks: You take end-to-end responsibility for a task from idea/start to finish
- Good understanding of lean and agile practices
- Good communication and interpersonal skills
- Operational excellence and maturity knowledge
- Fluency in written and spoken English (German is a plus)
- Data Compliance knowledge (GDPR, CCPA, etc. ) as plus
- Great enthusiasm for Information Security
- Intrinsic motivation, never ending curiosity
- Quick thinking and continuous learning personality and thus are able to dive into new topics quickly, filter and digest the relevant information
- Inquisitive and analytical mindset
- Great communication skills, clear and to the point
- Proactivity driver attitude happy to collaborate with others
- Ability to work comfortably in a lean and agile environment
Nice-to-have
- Information Security Management (ISMS) certifications (e.g. CISM, ISO 27001 LA,...)
- Data Privacy relevant certifications (e.g. CIPM, CIPP/E)
- Cloud security relevant certifications (e.g. GCP Cloud Engineer, GCP Security, MS365 etc.)
- Terraform experience
- Requirements management experience
What we offer
- Home office options up to three days a week
- Flexible working hours and a variable holiday option
- Solid familiarisation with an exciting and varied job
- Pleasant and team-oriented working atmosphere
- Workplace in the heart of Berlin including free drinks and fruit basket
- Further training opportunities
- Great team that is looking forward to meeting you
Depending on experience, the salary range is between 70.000 and 90.000 €
Tags: Agile CCPA CIPP CISM Cloud Compliance GCP GDPR Governance ISMS ISO 27001 NIST Privacy Risk management Security strategy Strategy Terraform TISAX
Perks/benefits: Career development Flex hours Startup environment Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.