Security Manager (m/f/d)
Munich, DE, 81677
Giesecke + Devrient GmbH
G+D shapes trust in the digital age, with built-in security technology in three segments Digital Security, Financial Platforms and Currency Technology.Mobile Security Germany is looking for a Security Manager (m/f/d) with responsibility for the implementation and enforcement of all company security standards (Security Policies and working instructions)
in the area of their responsibility, taking into consideration any synergy effects and measures. The role will include the revision of current procedures, documentation and implementation
of the related processes. Performing continuous assessment and audits will be necessary as well as ensuring that all appropriate security certifications are put in place.
Your tasks
- Define and implement the security strategy for G+D IoT Solutions according to G+D , external and internal requirements to deliver the desired security and compliance levels within budget guidelines
- Define a holistic and integrated approach for security risk management and risk reporting to address all relevant areas (e.g. security liabilities, ISMS, mid- to long term threat anticipation, security compliance / due diligence, background checks etc.) within the superordinate group guidelines
- Coordinate information sharing regarding major threats, vulnerabilities and risks
- Perform and coordinate security audits and mitigative actions
- Ensuring Compliance with Security Standards: Establish, improve and maintain adherence to an information security management system (such as ISO 27001) as well as internal policies
- Coordination of all customer related security aspects.
- Policy authorization for G+D IoT Solutions (security related procedure and process documentation)
- Authority to enforce security related instructions and processes
- Authority to lead major security related incident-, emergency- and crisis situations
- Right to audit all areas with security relevance
Your qualifications
- University Degree in Computer Science, security / information security or a related field including engineering, mathematics, physics or other comparable qualification
- 5 years of professional experience in a security management related role
- Distinct ability to communicate security problems in a target group-oriented manner
- Enrich software development workflow using best practices and methodologies based on OWASP
- Certifications like Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Lead Auditor 27k are helpful.
- Business English, spoken and written
- Knowledge and practical experience in the application of relevant standards and norms (e.g. ISO 27xxx, Common Criteria, GSMA SAS, NIST Cybersecurity Framework)
- Experience with security audits, certifications and the planning, implementation and follow-up of internal and external audits in connection with the group risk management system
- Strong communication skills, social and intercultural competence as well as strategic thinking
- High capacity for teamwork, empathy and assertiveness
- Willingness to travel
$$ We are an equal opportunity employer! We promote diversity in all its forms and create an inclusive work environment, free from prejudice, discrimination and harassment, in which all employees feel a sense of belonging. We warmly welcome all applications regardless of gender, age, race or ethnic origin, social and cultural background, religion, disability and sexual orientation.
$$ Samson Tzeggai $$ Career@gi-de.com $$ $$ $$ https://career5.successfactors.eu/career?company=gieseckede&career_job_req_id=25281&career_ns=job_application
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISA CISM CISSP Compliance Computer Science IoT ISMS ISO 27001 Mathematics Mobile security NIST OWASP Physics Risk management Security strategy Strategy Vulnerabilities
Perks/benefits: Career development Travel
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.