intive is hiring a
Chief Information Security Officer, Remote - Germany

Summary

The job is for a Chief Information Security Officer at intive, a global tech company with over 3000 employees. The role involves developing and implementing a long-term information security strategy, communicating security at a strategic level, identifying and reporting on security risks, and overseeing the implementation of security solutions.

Requirements

• Degree in computer science, business informatics, business administration or a technology-related field
• Professional security management certifications (CISSP, CISM, CISA, Lead Auditor)
• Knowledge of common information security management frameworks, such as ISO/IEC 27001 or TISAX
• Hands on experience with the implementation and certifications of information security management frameworks
• Excellent written and verbal communication skills and high level of personal integrity
• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
• Experience with contract and vendor negotiations and management including managed services
• Supervisory and incident management skills

Responsibilities

• Develop a strategic, long-term information security and IT risk management strategy and program and supervise its implementation to ensure that intive’s information assets are adequately protected
• Development, planning and implementation of a long-term security strategy for the company
• Budget planning and calculation
• Planning and implementation of awareness measures to maintain and expand company-wide security perception
• Work with senior leaders across the business to assess and communicate acceptable levels of risk
• Identify, evaluate and report on information security risks, practices and projects to the Executive Committee and the Board of Directors, and provide subject matter expertise on security standards and best practices (e.g. TISAX, ISO 27001, PCI, etc.)
• Develop the Board’s understanding of security beyond a ‘compliance-only’ view
• Lead the development of up-to-date information security policies, procedures, standards and guidelines, and oversee their approval, dissemination, and maintenance in line with ISO27001 and TISAX
• Ensure that the security management program follows applicable laws, regulations, and contractual requirements
• Act as the champion for the enterprise information security program and foster a security-aware culture
• Oversee the evaluation, selection and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive
• Partner with enterprise architects, infrastructure, and applications teams to ensure that technologies are developed and maintained according to security policies and guidelines
• Manage regular intrusion detection and vulnerability reporting, internal and external IT audit groups reviews, and the coordination of all required fixes
• Develop business metrics to measure the effectiveness of the security management program and increase the maturity of the program over time
• Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action
• Liaise with law enforcement and other advisory bodies as necessary to ensure that the organization maintains a strong security posture
• Oversee incident response planning and the investigation of security breaches, and assist with any associated disciplinary, public relations and legal matters

Benefits

• Remote Work, Flexibility & Balance. - Hybrid Work
• Performance management-. regular partnership meetings between each employee and his manager. You can create a career path based on your goals. We provide training, mentoring, and support to help you along the way
• Training & Mentorship. - Learning and development are an important part of our corporate culture. For this we work with a skill matrix, trainings and a buddy program
• Tech Hubs. - You become part of a community of colleagues who share your interests. There is room for internal exchange and access to the latest technologies
• Culture & Connection. - We foster connections within our teams, as well as across areas of responsibility and hierarchical levels. We make sure that everyone is appreciated and feels connected to our mission and our colleagues. In addition, we organize regular team events (Summer Games, Christmas party, Oktoberfest, etc.)
• Benefits. - We offer numerous additional benefits e.g working from abroad- 30 days per year worldwide, public transport, a childcare allowance, capital-forming benefits and a job bike