Finde einen Job 
Finde eine Ausbildung 
Top Arbeitgeber 
Top Universitäten 
Für Unternehmen Auf einen Blick
- Aufgaben: Lead audits and develop strategies for Information Security Management.
- Arbeitgeber: Join a leading global company focused on cybersecurity excellence.
- Mitarbeitervorteile: Enjoy a dynamic work environment with opportunities for growth and innovation.
- Warum dieser Job: Make a real impact in cybersecurity while collaborating with diverse teams.
- Gewünschte Qualifikationen: Bring your expertise in compliance, risk management, and communication skills.
- Andere Informationen: Work closely with legal experts and drive the transition to AI solutions.
Das voraussichtliche Gehalt liegt zwischen 72000 - 84000 € pro Jahr.
Information Security Compliance Manager (BBBH118747) Hamburg, Germany
A leading Global company I am working with are seeking a highly motivated Information Security Manager to lead external audits and certifications in Information and Cyber Security Management. This role involves developing strategies, governance frameworks, and processes to enhance ISMS maturity, governance, and cybersecurity compliance.
The successful candidate will drive the transition from a policy-based ISMS to a user-friendly, control-based AI solution, fully integrated into software development and project management. The new ISMS solution will focus on compliant standard solutions and automated compliance checks.
This role requires identifying legal and regulatory requirements across various countries, ensuring integration into a comprehensive control framework. Working closely with legal experts and external consultants, the candidate will also support defining security clauses in customer and vendor contracts.
Additionally, the candidate will drive the adoption of ISMS processes, oversee key metrics and support risk management by consulting risk owners on mitigation strategies. This role functions as both a control and advisory position, empowering business and IT teams to enhance security measures effectively.
Key Responsibilities:
- Lead external audits such as NIS-2/KRITIS, ISO 27001, and TISAX.
- Anticipate and respond to customer and regulatory requests regarding Information & Cyber Security compliance.
- Identify and integrate external regulatory requirements (e.g., NIS-2/KRITIS, TISAX, NIST) in collaboration with business, legal, and data protection experts.
- Assist legal and sales teams in defining and negotiating security-related contractual clauses.
- Design, develop, and implement ISMS & compliance strategies, governance frameworks, and roadmaps.
- Define and track ISMS effectiveness metrics, ensuring alignment with CISO oversight.
- Translate external requirements into ISMS policies and controls alongside technical experts.
- Ensure compliance and manage assessments with key stakeholders.
- Enhance collaboration between CISO teams, IT, and business units to improve compliance and risk management.
- Support team leadership in organizational planning, budget management, and project execution.
- Stay ahead of trends, innovations, and best practices in information security risk & compliance, recommending improvements as needed.
Qualifications:
- Extensive experience in Information & Cyber Security compliance roles.
- Strong knowledge of security principles, frameworks, and best practices.
- Deep understanding of cyber risk management, threats, vulnerabilities, and security controls.
- Familiarity with regulatory requirements such as NIS/NIS2, KRITIS, China Security Law, GDPR, ISO 27001, OWASP Top 10, and NIST CSF.
- Strong analytical and problem-solving skills with high attention to detail.
- Excellent communication, presentation, and training skills—capable of explaining technical concepts to non-technical stakeholders.
- Passion for cybersecurity risk management and mitigation.
- Experience collaborating with Legal, Data Protection Officers (DPOs), Risk & Control, Audit, and Procurement teams.
- Experience working in large international organizations and managing enterprise-level projects.
#J-18808-Ljbffr
Information Security Compliance Manager Arbeitgeber: Xcede
Kontaktperson:
Xcede HR Team
StudySmarter Bewerbungstipps 🤫
So bekommst du den Job: Information Security Compliance Manager
✨Tip Number 1
Familiarize yourself with the specific compliance frameworks mentioned in the job description, such as ISO 27001 and NIS-2. Understanding these standards will not only help you in interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the information security field, especially those who have experience with ISMS implementations. Engaging with industry experts can provide insights and potentially lead to referrals for the position.
✨Tip Number 3
Stay updated on the latest trends and best practices in cybersecurity compliance. Being knowledgeable about current developments will allow you to discuss relevant topics confidently during interviews.
✨Tip Number 4
Prepare to discuss your experience with cross-functional collaboration, particularly with legal and IT teams. Highlighting your ability to work with diverse stakeholders will showcase your suitability for this advisory role.
Diese Fähigkeiten machen dich zur top Bewerber*in für die Stelle: Information Security Compliance Manager
Tipps für deine Bewerbung 🫡
Understand the Role: Make sure to thoroughly read the job description and understand the key responsibilities and qualifications required for the Information Security Compliance Manager position. Tailor your application to highlight relevant experiences.
Highlight Relevant Experience: In your CV and cover letter, emphasize your extensive experience in Information & Cyber Security compliance roles. Mention specific frameworks and regulations you are familiar with, such as ISO 27001, NIS-2/KRITIS, and GDPR.
Showcase Communication Skills: Since the role requires excellent communication and presentation skills, provide examples of how you've effectively communicated complex security concepts to non-technical stakeholders in your previous roles.
Tailor Your Cover Letter: Craft a personalized cover letter that connects your passion for cybersecurity risk management with the company's goals. Discuss how you can contribute to enhancing ISMS maturity and compliance within their organization.
Wie du dich auf ein Vorstellungsgespräch bei Xcede vorbereitest
✨Understand the Regulatory Landscape
Make sure to familiarize yourself with key regulations such as NIS-2, ISO 27001, and GDPR. Being able to discuss how these regulations impact the role and the organization will demonstrate your expertise and readiness for the position.
✨Showcase Your Audit Experience
Prepare to discuss your experience leading external audits and certifications. Highlight specific examples where you successfully navigated compliance challenges and improved security measures, as this is a critical aspect of the role.
✨Communicate Effectively with Non-Technical Stakeholders
Since the role involves explaining complex security concepts to non-technical teams, practice articulating your thoughts clearly and concisely. Use relatable analogies or examples to make your points more accessible.
✨Demonstrate Strategic Thinking
Be ready to discuss how you would develop and implement ISMS strategies and governance frameworks. Share your vision for transitioning to a user-friendly, control-based AI solution, and how you would ensure its integration into existing processes.
