Manager of Information Security Governance (all genders)

Our Story and Why We're Growing  

The mission has started. We proudly announce that in our Battery Valley we are starting our own battery cell production and the ramp up of our worldwide headquarters for global cell manufacturing. In this, the tasks and requirements of the unit Information Technology are varied. IT takes care all matters relating to information technology, i.e. electronic data processing. The responsibilities vary from IT-infrastructure to digitization of the organization to the operational use of electronic data processing throughout the organization.

     About the Role

• Developing, implementing, and maintaining information security policies, standards, and guidelines
• Ensuring compliance with relevant regulations such as GDPR, ISO 27001, NIST, and other industry-specific frameworks
• Conducting risk assessments to identify vulnerabilities and recommend appropriate mitigation strategies
• Collaborating with internal teams to ensure alignment between security policies and business objectives
• Monitoring and reporting on key security metrics and compliance posture to senior management
• Providing security awareness training and workshops for employees to promote a culture of security
• Supporting internal and external audits by preparing necessary documentation and responses
• Working with legal and compliance teams to ensure regulatory requirements are met
   

     Key Responsibilities

• Degree in Information Security, Cybersecurity, Computer Science, or a related field
• 8-10 years of experience in an IT Security environment
• 3-5 years of experience leading teams
• Proven experience in information security governance, compliance, and risk management
• Familiarity with industry frameworks such as ISO 27001, NIST, CIS Controls, and regulatory requirements like GDPR, SOX, or HIPAA
• Strong understanding of risk assessment methodologies and compliance auditing
• Excellent analytical, problem-solving, and stakeholder management skills
• Ability to work independently and collaboratively in a fast-paced environment
   

     What you bring to the Team

• Relevant certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor
• Experience in third-party risk management and vendor assessments
• Knowledge of cloud security governance (e.g., AWS, Azure security frameworks)
• Previous experience conducting security awareness programs
• Familiarity with GRC tools (Governance, Risk, and Compliance)

  Power Perks

Flat hierarchies 
Mobile work options