Finde einen Job 
Finde eine Ausbildung 
Top Arbeitgeber 
Top Universitäten 
FĂĽr Unternehmen Auf einen Blick
- Aufgaben: Lead security controls implementation and monitor compliance with ISO27001 & SOC 2.
- Arbeitgeber: Join airfocus, a top-rated company recognized for its innovative product management platform.
- Mitarbeitervorteile: Enjoy remote work options, flexible hours, and a competitive salary with personal development support.
- Warum dieser Job: Be part of a diverse team, drive security culture, and make a real impact in a fast-paced startup.
- Gewünschte Qualifikationen: Bachelor’s or Master’s in IT security or related field; 1+ year in information security management.
- Andere Informationen: Possession of a CIPP/E certification is a strong plus; clean criminal record required.
Das voraussichtliche Gehalt liegt zwischen 48000 - 84000 € pro Jahr.
Your mission
Join airfocus, a standout company recognized by Kununu as a TOP 5% best-rated company for 2023 and 2024, boasting a 4.8 rating and 94% recommendation on Glassdoor – be part of our success story NOW!
airfocus, the world’s first modular product management platform, is growing on all continents.
We have proven to be an up-and-coming industry leader with a proven business model and a first-class team.
Now, with thousands of users from customers like Orange, Sennheiser, or Moneygram, it’s time to add fuel to the fire and reach the next level of information security
We are looking for a motivatedinformation security manager who will help handle and manage security requirements, monitor our compliance with ISO27001 & SOC 2 and be the person to talk to our customers and respond to all vendor security questionnaires. In this role, you will directly report to the CTO and CRO and cross-collaborate with all departments.
What you’ll do:
- Lead implementation of security controls : With the support of our current Information Security Manager, take charge of implementing and enhancing information security controls, particularly focusing on SOC2, ensuring alignment with laws, regulations, industry standards (e.g., GDPR, ISO27001), and business requirements.
- Monitor and investigate security issues : Oversee the monitoring, investigation, and resolution of issues, creating reports, conducting security assessments, and driving security programs across the organization.
- Manage SaaS product security technologies : Supervise the implementation and management of security technologies related to our SaaS product.
- Support in client interactions : Assist departments with information security-related questions during proposal and negotiation processes with potential clients/customers.
- Drive security awareness : Develop and deliver security awareness and training programs to educate employees on best practices, fostering a strong security culture.
- Conduct security assessments : Perform regular security assessments and audits to identify gaps in the company’s security posture, recommending and driving remediation actions.
- Ensure device compliance : Take ownership of company device management to maintain compliance with regulations and industry standards.
Your profile
- Relevant academic background : Bachelor’s or Master’s degree in IT security, information systems, computer science, technology management, or a similar field, or equivalent apprenticeship experience with foundational knowledge of information security-related topics.
- Understanding of SaaS security : Strong grasp of the security challenges and solutions for modern cloud-based SaaS providers.
- Experience in information security management : At least 1 year of working experience with information security management systems, including risk assessment, threat management, and incident response.
- Problem-solving mindset : Passionate about combining robust security with the fast-paced environment of a SaaS product management startup.
- Project management skills : Self-driven project manager familiar with the workstreams of ISO 27001 and SOC 2 certification processes.
- Technical security knowledge : Basic understanding of modern web application architecture (e.g., OWASP Top 10), cloud hosting technologies (e.g., Kubernetes, infrastructure as code), and best practices for securing these environments.
- Strong interpersonal skills : Ability to communicate effectively with colleagues at all levels, building strong relationships with various stakeholders.
- Language proficiency : Excellent written and spoken English; German is a plus.
- Clean criminal record : Ability to provide a clean criminal record certificate upon request.
- Bonus : Possession of a CIPP/E certification is a strong plus.
Why us?
You’ll join a diverse and world-class team with plenty of opportunities for personal growth, impact, and learning.
- Remote-first team: Work from our awesome Hamburg- or Amsterdam HQ, or choose anywhere in Germany or the Netherlands!
- Flexible working hours.
- Boost your personal development in an environment that encourages continuous learning.
- L&D budget.
- Competitive compensation.
- MacBook Pro or notebook of your choice.
- Healthy (and non-healthy!) snacks and beverages (if you’re in HAM or AMS).
- Recurring virtual events.
- Annual airfolks meet-ups!
#J-18808-Ljbffr
Information Security Manager (all genders) Arbeitgeber: Airfocus
Kontaktperson:
Airfocus HR Team
StudySmarter Bewerbungstipps 🤫
So bekommst du den Job: Information Security Manager (all genders)
✨Tip Number 1
Familiarize yourself with the specific security frameworks mentioned in the job description, like ISO27001 and SOC 2. Understanding these standards will not only help you in interviews but also show your commitment to the role.
✨Tip Number 2
Engage with the airfocus community on platforms like LinkedIn or relevant forums. This can give you insights into the company culture and current projects, which you can reference during your discussions.
✨Tip Number 3
Prepare to discuss real-world scenarios where you've implemented security measures or handled incidents. Having concrete examples ready will demonstrate your problem-solving mindset and practical experience.
✨Tip Number 4
Showcase your interpersonal skills by practicing how to communicate complex security concepts in simple terms. This is crucial since you'll be interacting with various stakeholders across departments.
Diese Fähigkeiten machen dich zur top Bewerber*in für die Stelle: Information Security Manager (all genders)
Tipps für deine Bewerbung 🫡
Understand the Role: Before applying, make sure you fully understand the responsibilities and requirements of the Information Security Manager position. Tailor your application to highlight your relevant experience in information security management, particularly with ISO27001 and SOC 2.
Highlight Relevant Experience: In your CV and cover letter, emphasize your experience with SaaS security, risk assessment, and incident response. Provide specific examples of how you've implemented security controls or managed security technologies in previous roles.
Showcase Your Problem-Solving Skills: Demonstrate your problem-solving mindset by including examples of challenges you've faced in information security and how you overcame them. This will show that you can thrive in a fast-paced startup environment.
Communicate Effectively: Since strong interpersonal skills are crucial for this role, ensure your application reflects your ability to communicate effectively. Use clear and concise language, and consider mentioning any experience you have in collaborating with various stakeholders.
Wie du dich auf ein Vorstellungsgespräch bei Airfocus vorbereitest
✨Show Your Security Knowledge
Be prepared to discuss your understanding of information security concepts, especially related to ISO27001 and SOC 2. Highlight any relevant experience you have in managing security controls and compliance.
✨Demonstrate Problem-Solving Skills
Share examples of how you've tackled security challenges in the past. Employers are looking for a candidate who can think critically and find solutions in a fast-paced SaaS environment.
✨Communicate Effectively
Since this role involves cross-collaboration with various departments, practice articulating your thoughts clearly. Be ready to explain complex security topics in a way that non-technical stakeholders can understand.
✨Prepare for Client Interaction Scenarios
Anticipate questions about how you would handle vendor security questionnaires or client inquiries. Show that you can represent the company’s security posture confidently and professionally.
