About the role

Manager for Information Security at Ventuseo focusing on strategic consulting and security architecture transformation. Ensuring compliance and risk management while driving business development in a hybrid work environment.

Responsibilities

Strategic client advisory at management level: You provide comprehensive advice to company leadership up to board level on all aspects of information security — from governance strategies and proactively addressing regulatory developments to technological sovereignty.
Transformation of security architectures: You analyze existing organizations and architectures, identify strategic development opportunities, and design future-oriented solutions.
Project and program leadership: You take end-to-end responsibility for complex projects and entire programs at our clients, leading interdisciplinary project teams confidently to project success, even in complex environments.
Risk management & resilience: You lead in-depth risk analyses (e.g., according to ISO 27005 or BSI standards) and translate results into prioritized action plans. Your focus: proactive resilience and technological sovereignty rather than reactive crisis management.
Business development & thought leadership: You build and leverage your network to open new markets and acquire clients — through strategic partnerships, professional publications & presentations, and proactive input to further develop our portfolio.
Lead by example: You act as a role model in line with our company principles and actively shape the daily life of our team.

Professional expertise: At least five years of relevant professional experience in information security or cyber security — ideally in consulting with initial leadership experience.
Methodological expertise: You have initial experience leading parallel complex projects or programs, outstanding communication skills up to management level, and are comfortable with complex regulatory requirements.
Thematic focuses: You have deep knowledge in at least three of the following areas and experience integrating these topics across domains: Governance, Risk & Compliance (GRC); implementation & optimization of an ISMS; information risk management; selection & implementation of security tools; BCM / ITSCM; security IT architecture; cloud security; identity & access management; SIEM / SOC / SOAR; leading security programs.
Academic qualification: Completed relevant university degree (e.g., Computer Science, Business Informatics, Business Administration) or comparable qualification.
Certifications: Ideally you bring certifications relevant to your areas of expertise.
Network & client acquisition: You bring a robust network at decision-maker level and can actively use it for project acquisition and long-term client relationships.
Mindset: You bring an entrepreneurial mindset and view information security not as a cost but as a competitive advantage. You want to help shape our company and develop the market with us.

Shape the future: A dynamic working environment in a growing, innovative company — with room for your ideas and real impact.
Diverse projects: Exciting challenges with well-known clients — from strategic security concepts to operational implementation.
Flexibility & autonomy: Modern working models with flexible hours and locations — we give you trust-based freedom to design your work.
Modern culture: An open, collegial corporate culture that promotes team spirit and initiative.
Top equipment: State-of-the-art technology and tools that make your work efficient and comfortable.
Attractive package: Competitive compensation with transparent, publicly available salary bands as well as a comprehensive benefits package — from health offers to mobility and mobile working options.
Professional development: Individual growth opportunities through targeted training and certifications.
Social responsibility: In all aspects of our company we consider the responsible role we play in society and our environment.