Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
About the role
- IT-Security Manager at Alterric safeguarding critical IT infrastructures for the energy transition. Responsibilities include risk management and development of security architectures in hybrid settings.
Responsibilities
- IT security responsibility
- Protection of IT infrastructure, particularly cloud, network and critical production systems
- Ensuring endpoint, application and identity security (IAM, MFA, Conditional Access)
- Implementation of zero-trust architectures and network segmentation
- Compliance with standards such as ISO 27001 and legal requirements (KRITIS, NIS2)
- Development and implementation of holistic technical security concepts and policies
- Conducting security architecture reviews for new projects and technologies
- Introduction and maintenance of KPIs to measure the security posture
- Proactive identification, assessment and treatment of IT security risks
- Management of incident and problem handling, including coordination of the external SOC
- Planning and testing of disaster recovery plans, including alignment with business continuity management
- Supporting internal departments on security issues related to cloud, IoT and new software solutions
- Integration of Security by Design into projects
- Organizing and tracking actions arising from ISO 27001 audits
- Conducting gap analyses and deriving improvement measures
Requirements
- Degree in IT, IT security or comparable qualification — alternatively several years of relevant professional experience with appropriate further training
- Several years of experience in technical IT security, ideally in the energy sector, critical infrastructures or other regulated industries
- Solid expertise in network security, cloud security (Microsoft Azure), zero-trust architectures and modern security solutions
- Experience with sovereign cloud solutions, data sovereignty and data residency
- Practical experience in Identity & Access Management (IAM, MFA, Conditional Access) and experience with SIEM/SOC environments
- Knowledge of current standards and methods (ISO 27001, BSI IT-Grundschutz, NIS2, KRITIS) — certifications such as CISSP or Microsoft Security are an advantage
- Analytical and conceptual thinking, solution-oriented and structured way of working
- Strong communication skills and enjoyment of interdisciplinary collaboration
- Very good German and English skills
- Driver's license and mobility required
Benefits
- 30 vacation days per year (plus December 24 and 31 off)
- Overtime tracking that can be converted into flex-time days
- Individual development opportunities and training offers
- High level of development and support opportunities
- Monthly benefits budget of €50, flexibly usable for sports, shopping or mobility
- Option to use the company health insurance BKK EWE
- Company pension scheme with gross salary conversion including 20% employer contribution
- Various leave options using time-value accounts (e.g. sabbatical, part-time)
- Collegial first-name culture and diversity
- Employee discounts via the Corporate Benefits platform
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.
AI Application Security Architect in charge of driving secure development lifecycle for AI systems across multi - cloud environments and hybrid platforms.
Security Project Manager responsible for managing cyber - security project delivery and ensuring quality execution in Bulgaria. Requires excellent communication skills and fluency in English.
Information Security professional managing governance, audit, and compliance in banking domain. Collaborating across teams to enhance security posture and control effectiveness.
IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.