devjobs.de

Information Security Officer

ib vogt GmbH · Berlin | Deutschland · Hybrid, Onsite

Gehalt auf Anfrage

Gefunden am 01.06.2026

Match

84%

Fit in Skills, Kultur und Entwicklungspfad.

Beschreibung

Job Zusammenfassung In dieser Rolle entwickelst du ein globales Informationssicherheitsframework, führst Risikoanalysen durch, kümmerst dich um Sicherheitsvorfälle und förderst ein Sicherheitsbewusstsein innerhalb des Unternehmens. Job Zusammenfassung In dieser Rolle entwickelst du ein globales Informationssicherheitsframework, führst Risikoanalysen durch, kümmerst dich um Sicherheitsvorfälle und förderst ein Sicherheitsbewusstsein innerhalb des Unternehmens. Deine Rolle im Team As Information Security Officer (ISO), you will be responsible for establishing, implementing, and maintaining IB Vogt's global information security framework. Reporting directly to the Head of IT & Digitalization, you will ensure the confidentiality, integrity, and availability of corporate and project-related data across all regions and business functions. You will also act as the independent guardian of information security, ensuring compliance with international standards (ISO 27001, NIS2, GDPR) and enabling secure digital growth. You will lead a team of 2 people and co-ordinate external partners. Develop and maintain the Information Security Management System (ISMS), aligned with ISO 27001/27002 and NIS2 standards. Define security policies, standards, and procedures in coordination with the Head of IT & Digitalization. Act as the primary point of contact for information security across IB Vogt. Conduct risk assessments and vulnerability analyses across IT, cloud, and OT/SCADA environments. Ensure compliance with legal, regulatory, and contractual security requirements (e.g., GDPR, NIS2, CSRD). Support internal and external audits and certifications. Implement incident detection and response processes, ensuring quick containment and resolution of threats. Monitor security posture across IT infrastructure, ERP, cloud services, and operational systems and oversee third-party/vendor security assessments. Lead security awareness programs for employees, contractors, and partners. Promote a security-first culture across business units and global offices. Unsere Erwartungen an dich Ausbildung Degree in Information Security, Computer Science, or a related field. Qualifikationen Knowledge of cloud security (Azure/AWS), endpoint protection, and OT/SCADA security in energy/EPC environments. Familiarity with data protection regulations (GDPR, energy-sector-specific standards). Certifications such as CISSP, CISM, ISO 27001 Lead Auditor/Implementer are highly desirable. Strong communication and stakeholder management skills. Fluency in English; German language skills are a plus. Erfahrung 5+ years of hands on experience in cybersecurity, risk management, or IT security. Proven experience with ISMS frameworks (ISO 27001, NIS2, CIS Controls). Unser Angebot A truly international working environment with colleagues from all over the world. An open-minded, friendly, dynamic, and highly motivated team. Interesting and challenging tasks, and thus a scope of professional growth and development. We encourage both team work and personal responsibility. Competitive remuneration, and other exciting benefits. Themen mit denen du dich im Job beschäftigst Cyber/Security Metadaten Level: Erfahren Job Feld: IT, Security Anstellung: Vollzeit Vertragsart: Unbefristetes Dienstverhältnis Arbeitsmodell: Hybrid, Onsite Unternehmenstyp: Etablierte Firma Branche: Energiewirtschaft, Umwelt Ort: Berlin | Deutschland

Tech Stack

AWSAzure

Warum passt du zu dieser Stelle?

Fit technisch: Stark auf Backend und API-Architektur.

Gaps: Fehlende Tool-Erfahrung in 1-2 Schlüsselbereichen.

Success-Wahrscheinlichkeit: Hoch bei schneller Einarbeitung.