Your responsibilities
As Junior Information Security Manager, you will be part of the Information Security and Data Protection Team, learn or expand your knowledge and abilities in all tasks related to the team. You will report directly to the CISO/DPO.
Based on your abilities and interests, you will take responsibility for security projects and processes, manage audits, create or improve documentation. You will work closely with other departments on diverse topics related to Information Security and Data Protection. Your goal will be to maintain and improve our state-of-the-art security organization and setup, and to ensure compliance to applicable laws and standards (including ISO27001, BAIT, and GDPR). Within a small team, you will deal with security in a holistic and practical manner and will be supported by the team to become proficient in all related topics and issues.
- Ensure awareness and alignment on security and data protection topics
- Execute and improve the security policies, controls, and processes
- Align IT and business processes, and their implementation, with security goals
- Work with other departments to develop and improve processes and systems
- Support teams and projects, and propose practical and pragmatic solutions, e.g. on
- Information security and data protection strategy, and goals
- Interpretation and implementation of requirements, policies, and standards
- Customer communication, including requests for proposals and audit requests
- Handling of vulnerabilities, incidents, and temporary deviations from policies/standards
- Prepare and support audits, penetration tests, red team exercises, or other security tests