Compliance & Information Security Manager
Berlin or Remote
⚠️ We'll shut down after Aug 1st - try foo🦍 for all jobs in tech ⚠️
GlassDollar
Set up and Scale your Venture Clienting activities for lean and impactful testing of Startup solutions: Software, Expert Project Management & Startup Sourcing.About
If you are a compliance and security professional with SaaS B2B experience, join us to co-create the future of Corporate Open Innovation!
Responsibilities
• Manage vendor security processes, including completing security questionnaires(IT checks) and incorporating security language into contractual agreements.• Develop and maintain policies and guidelines regarding information security and compliance.
• Manage our security and compliance activities, such as our TISAX recertification and annual penetration testing.
• Act as the central point of contact regarding security and compliance with the Product, Law consultants, and Clients' IT teams.
• Help Product leadership articulate security and compliance requirements when evaluating third-party products.
• Take a pragmatic approach to balance security best practices with business needs.
• Develop, implement, review, and assess the Information Security Management System (ISMS) for compliance and effectiveness, ensuring alignment with regulatory requirements and market demands (including a security strategy, roadmap, policies, procedures, guidelines, and controls).
Your profile
• Ability to conduct threat and risk assessments and help the Product grow while covering minimal pragmatic requirements.• German speaker - Highly preferable
• Knowledge and experience designing controls and processes for TISAX and/or ISO 27001 requirements.
• Hands-on experience with information security, particularly in cloud-based environments(AWS, Azure, or GCP).
• A strong understanding of privacy requirements (GDPR).
• Experience working with developer and product teams to improve security processes and integrate security tooling.
• Experience managing and completing incoming vendor security reviews and collaborating with legal and procurement teams on contractual agreements.
• Sufficient technical competence to understand relevant concepts and support ongoing projects and technology efforts.
• Excellent interpersonal skills to communicate complex technical concepts to various stakeholders.
• High professional standards and strong attention to detail.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
39
8
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: AWS Azure Cloud Compliance GCP GDPR ISMS ISO 27001 Pentesting Privacy Risk assessment SaaS Security strategy Strategy TISAX
Regions:
Remote/Anywhere
Europe
Country:
Germany
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Cybersecurity Engineer jobsSystems Engineer jobsSenior Security Analyst jobsSystems Administrator jobsSecurity Operations Engineer jobsSenior Cloud Security Engineer jobsCyber Security Specialist jobsInformation System Security Officer (ISSO) jobsSenior Product Security Engineer jobsSenior Information Security Engineer jobsInformation Security Manager jobsSecurity Consultant jobsSenior Network Security Engineer jobsSecurity Specialist jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsSenior Software Engineer jobsNetwork Engineer jobsCyber Threat Intelligence Analyst jobsSenior IT Auditor jobsCybersecurity Specialist jobsSoftware Engineer jobs
Bash jobsJava jobsEDR jobsEncryption jobsTS/SCI jobsRMF jobsSDLC jobsITIL jobsThreat detection jobsTerraform jobsSplunk jobsIDS jobsTop Secret jobsCompTIA jobsSQL jobsMalware jobsDocker jobsOWASP jobsIPS jobsForensics jobsActive Directory jobsFinance jobsGIAC jobsClearance Required jobsSOC 2 jobs
DoDD 8570 jobsMITRE ATT&CK jobsIntrusion detection jobsOSCP jobsTCP/IP jobsCRISC jobsVPN jobsSOAR jobsHIPAA jobsCCSP jobsJavaScript jobsZero Trust jobsDNS jobsKPIs jobsIT infrastructure jobsIndustrial jobsNIST 800-53 jobsMachine Learning jobsAnsible jobsBanking jobsData Analytics jobsUNIX jobsSOX jobsJira jobsVMware jobs