Compliance & Information Security Manager
Berlin or Remote
GlassDollar
Set up and Scale your Venture Clienting activities for lean and impactful testing of Startup solutions: Software, Expert Project Management & Startup Sourcing.About
If you are a compliance and security professional with SaaS B2B experience, join us to co-create the future of Corporate Open Innovation!
Responsibilities
• Manage vendor security processes, including completing security questionnaires(IT checks) and incorporating security language into contractual agreements.• Develop and maintain policies and guidelines regarding information security and compliance.
• Manage our security and compliance activities, such as our TISAX recertification and annual penetration testing.
• Act as the central point of contact regarding security and compliance with the Product, Law consultants, and Clients' IT teams.
• Help Product leadership articulate security and compliance requirements when evaluating third-party products.
• Take a pragmatic approach to balance security best practices with business needs.
• Develop, implement, review, and assess the Information Security Management System (ISMS) for compliance and effectiveness, ensuring alignment with regulatory requirements and market demands (including a security strategy, roadmap, policies, procedures, guidelines, and controls).
Your profile
• Ability to conduct threat and risk assessments and help the Product grow while covering minimal pragmatic requirements.• German speaker - Highly preferable
• Knowledge and experience designing controls and processes for TISAX and/or ISO 27001 requirements.
• Hands-on experience with information security, particularly in cloud-based environments(AWS, Azure, or GCP).
• A strong understanding of privacy requirements (GDPR).
• Experience working with developer and product teams to improve security processes and integrate security tooling.
• Experience managing and completing incoming vendor security reviews and collaborating with legal and procurement teams on contractual agreements.
• Sufficient technical competence to understand relevant concepts and support ongoing projects and technology efforts.
• Excellent interpersonal skills to communicate complex technical concepts to various stakeholders.
• High professional standards and strong attention to detail.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
33
5
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: AWS Azure Cloud Compliance GCP GDPR ISMS ISO 27001 Pentesting Privacy Risk assessment SaaS Security strategy Strategy TISAX
Regions:
Remote/Anywhere
Europe
Country:
Germany
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsSystems Administrator jobsIT Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSenior Security Analyst jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Network Security Engineer jobsSecurity Consultant jobsSenior Product Security Engineer jobsInformation System Security Officer (ISSO) jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSenior Information Security Engineer jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior IT Auditor jobsSecurity Operations Analyst jobsCybersecurity Specialist jobsSenior Software Engineer jobsNetwork Engineer jobs
Java jobsBash jobsTS/SCI jobsEncryption jobsEDR jobsSDLC jobsSplunk jobsMalware jobsThreat detection jobsRMF jobsFinance jobsTerraform jobsTop Secret jobsForensics jobsIDS jobsCompTIA jobsSQL jobsITIL jobsIPS jobsActive Directory jobsSOC 2 jobsDocker jobsOWASP jobsClearance Required jobsGIAC jobs
Intrusion detection jobsCRISC jobsAnsible jobsVPN jobsTCP/IP jobsOSCP jobsHIPAA jobsDoDD 8570 jobsMITRE ATT&CK jobsData Analytics jobsZero Trust jobsJavaScript jobsSOAR jobsIT infrastructure jobsBanking jobsCCSP jobsSOX jobsIndustrial jobsUNIX jobsDNS jobsJira jobsNIST 800-53 jobsGCIH jobsKPIs jobsCISO jobs