Technical Security Expert at Spendesk enhancing security for one of Europe's fastest - growing fintechs. Collaborating with teams to embed security in every project while staying ahead of threats.
About the role
- Information Security Manager leading cyber security initiatives at NVISO, enhancing clients’ security posture and managing a team of consultants in Germany.
Responsibilities
- Leading and managing a team of CISOaaS/GRC consultants to deliver high-quality services to clients
- Collaborating closely with clients to understand their business objectives, risks, and unique security requirements
- Assessing the security maturity of clients to identify gaps and areas for improvement
- Developing and implementing a fit-for-purpose security program
- Driving the security program at clients, acting as the security champion
- Conducting risk assessments, identifying vulnerabilities, and recommending risk mitigation strategies
- Overseeing and supporting the implementation of the security program, including policies, procedures, and controls
- Providing updates to management on the ‘state of security’
- Holding steering committees at customers with relevant stakeholders to guide and adapt the security program
- Involving actively in the sales process by creating and presenting Statements of Work and project plans
Requirements
- You are eligible for NATO Clearance
- Bachelor’s degree in Business Administration, Information Security, or a related field
- Professional certifications such as CISA, CISSP, CISM, ISO27001 Implementer/Auditor or equivalent are strongly preferred
- Proven experience in being a CISO and/or having successfully implemented ISO27k or BSI Grundschutz
- In-depth knowledge of relevant industry standards and frameworks, such as ISO 27001, DORA, NIST, NIS-2, GDPR, etc.
- Familiarity with risk management methodologies and their application to cybersecurity
- Excellent English and German written and verbal communication skills
- Leadership skills to manage a team and collaborate with clients and cross-functional teams
Benefits
- A training budget of 10,000 EUR plus 10 days paid time off rolling over two years
- Working with and learning from the best people in the European cyber security "scene"
- Prestigious continuing education opportunities (GSE, GXPN, CISSP, OSCP, etc.)
- A forward-thinking and agile company that supports you in the creation and implementation of new initiatives
- Unique team events (most recently e.g. Lisbon, Dubai, Malta, Lapland)
- A sophisticated coaching concept starting on day 1
- 30 days of vacation
- Flexible working hours and home office options (+ Working Abroad Option within the EU)
- Cost absorption for Deutschlandticket and the BahnCard50
- Company bike leasing
- Company pension scheme
- A cool office in the heart of Frankfurt and Munich (Roof terrace, table tennis, Playstation, BBQ)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Lead Security Engineer driving security initiatives for Pipedrive, a cloud - based software company. Focus on building scalable tooling for automated detection and response while mentoring engineers.
Lead Security Engineer at Pipedrive focusing on secure - by - design principles. Drive security initiatives and mentor engineering teams to strengthen overall security posture.
Lead Security Engineer driving security initiatives that embed secure - by - design principles at Pipedrive. Collaborating with teams to strengthen security posture across platforms and products.
Lead Security Engineer driving security initiatives for cloud - based software company. Focused on scalable tooling for automated detection and response while mentoring security engineers.
Lead Security Engineer driving security initiatives that embed secure - by - design principles at Pipedrive. Over 100,000 companies trust our cloud - based software for sales and marketing.
Lead Security Engineer responsible for developing security solutions and mentoring team members. Join Pipedrive to enhance security across cloud - native environments.
Cybersecurity consultant at HiQ helping businesses enhance their cyber defense and security posture. Engaging with various industries to implement security standards and strategies.
Principal Advisor providing strategic leadership in health, safety, and security at DOC. Focused on driving long - term maturity, strengthening assurance, and lifting performance across the organisation.
Cybersecurity Senior Consultant responsible for evaluating cybersecurity and resilience capabilities. Collaborating with clients to enhance security posture and compliance through assessments and advisory engagements.