IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
About the role
- IT-Security Manager at Alterric responsible for safeguarding digital infrastructures in energy sector. Protecting IT systems and ensuring compliance with security standards and regulations.
Responsibilities
- Overall responsibility for IT security
- Protection of IT infrastructure, with emphasis on cloud, network and critical production systems
- Ensuring endpoint, application and identity security (IAM, MFA, Conditional Access)
- Implementation of Zero-Trust architectures and network segmentation
- Compliance with standards and legal requirements such as ISO 27001, KRITIS and NIS2
- Development and implementation of comprehensive technical security concepts and policies
- Conducting security architecture reviews for new projects and technologies
- Introducing and maintaining KPIs to measure the security posture
- Proactive identification, assessment and remediation of IT security risks
- Continuous monitoring and response to security incidents
- Supporting internal departments on security matters related to cloud, IoT and new software solutions
Requirements
- Degree in IT, IT security or a comparable qualification — alternatively several years of relevant professional experience with appropriate further training
- Several years of experience in technical IT security, ideally in the energy sector, critical infrastructures or other regulated industries
- Solid expertise in network security, cloud security (Microsoft Azure), Zero-Trust architectures and modern security solutions
- Experience with sovereign cloud solutions, data sovereignty and data residency
- Practical experience in Identity & Access Management (IAM, MFA, Conditional Access) and working with SIEM/SOC environments
- Knowledge of current standards and frameworks (ISO 27001, BSI IT-Grundschutz, NIS2, KRITIS) — certifications such as CISSP or Microsoft Security are an advantage
- Analytical and conceptual thinking, solution-oriented and structured way of working
- Strong communication skills and enjoyment of interdisciplinary collaboration
- Very good German and English language skills
- Driver’s license and mobility required
Benefits
- 30 vacation days per year (additionally December 24 and 31 off)
- Overtime tracking that can be converted into flex/compensatory time off
- Individual development opportunities and training programs
- Collegial, informal first-name culture and diversity
- Employee discounts via the Corporate Benefits platform
- Monthly benefits budget of €50, flexible for sports, shopping or mobility
- Option to use the company health insurance fund BKK EWE
- Company pension plan with gross salary conversion including 20% employer contribution
- Various leave options through time-value accounts (e.g., sabbatical, part-time)
- Significant opportunities to contribute and a culture that welcomes employee ideas
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.
Information System Security Officer ensuring security controls and risk mitigation in Aerospace. Collaborating with teams to assess threat landscapes and guide clients with actionable plans.
Cyber Security Architect at Booz Allen supporting program management of cybersecurity tools suite and Zero Trust Architecture roadmap. Lead technical efforts in modern security practices and team collaboration.