IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
About the role
- IT-Security Manager protecting IT infrastructure and ensuring resilience for the energy transition. Focused on cloud, network security, and compliance with key standards.
Responsibilities
- Responsibility for IT security
- Protection of IT infrastructure, in particular cloud, network and critical production systems
- Ensuring endpoint, application and identity security (IAM, MFA, Conditional Access)
- Implementation of Zero-Trust architectures and network segmentation
- Compliance with standards such as ISO 27001 and legal requirements (KRITIS, NIS2)
- Development and implementation of comprehensive technical security concepts and policies
- Conducting security architecture reviews for new projects and technologies
- Introduction and maintenance of KPIs to measure the security posture
- Proactive identification, assessment and remediation of IT security risks
- Continuous monitoring and response to security incidents
- Advising internal departments on security matters related to cloud, IoT and new software solutions
- Organizing and tracking actions arising from ISO 27001 audits
Requirements
- Degree in IT, IT security or equivalent qualification — alternatively several years of relevant professional experience with appropriate further training
- Several years of experience in technical IT security, ideally in the energy sector, critical infrastructures or other regulated industries
- Solid know-how in network security, cloud security (Microsoft Azure), Zero-Trust architectures and modern security solutions
- Experience with sovereign cloud solutions, data sovereignty and data residency
- Practical experience in Identity & Access Management (IAM, MFA, Conditional Access) and working with SIEM/SOC environments
- Knowledge of current standards and methods (ISO 27001, BSI IT-Grundschutz, NIS2, KRITIS) — certifications such as CISSP or Microsoft Security are an advantage
- Analytical and conceptual thinking, solution-oriented and structured way of working
- Strong communication skills and enjoyment of interdisciplinary collaboration
- Very good German and English language skills
- Driver’s license and mobility required
Benefits
- 30 days of annual leave per year (additionally off on 24th and 31st December)
- Overtime tracking that can be converted into flex-time days
- Individual development opportunities and training programs
- Collegial, first-name culture and commitment to diversity
- Employee discounts via the Corporate Benefits platform
- Monthly benefits budget of €50, flexibly usable for sports, shopping or mobility
- Access to the company health insurance fund BKK EWE
- Company pension plan with salary conversion including a 20% employer contribution
- Various leave options through time-value account management (e.g. sabbatical, part-time)
- Significant opportunities for participation and welcome contribution of employee ideas
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.
Security Specialist ensuring the protection of company and government assets. Conducting daily security functions and providing technical support while maintaining compliance with regulations.
Industrial Security Specialist conducting daily security functions and providing technical support within Booz Allen. Focused on protecting company and government assets while handling classified materials.