Information Security Officer (Permanent)

Remote
- Nuremburg, Berlin, Germany

Job description

Job Title: Information Security Officer
Seniority Level: Senior
Location: Remote (Germany, UK, Spain)
Language Requirements: English (German is a plus)

Our client is looking for a Permanent Information Security Officer will be responsible for managing the information security function across all subsidiaries. Reporting to the VP IT, you will oversee the day-to-day management of the information security function and team, while driving the information security strategy and program.

You will be joining a growing international technology company and will play a pivotal role in implementing security best practices across the organization. Leading a team of 2, you will have the opportunity to shape direction and drive organizational change. With a focus not only on IT Security and hard skills, you will have the opportunity to develop a Security native mindset across Engineering, support all other functions and be a vital part of the secure future of the client.

Key Responsibilities:

Strategic Leadership:
- Having an entrepreneur mindset and being willing to get your hands dirty
- Seeing soft skills as important as hard skills and help developing them within your team
- Design and implement a security strategy aligned with company goals and objectives
- Function as a translator and adopt the language of stakeholders to translate complex Information Security related topics into simple words
- Work with the wider leadership team to cultivate a security-centric culture within the organization
- Regularly report to the board on the state of security and the wider threat landscape.

Operational Excellence:
- Lead the security function to deliver pragmatic and hands-on solutions
- Collaborate with technical stakeholders to embed security-conscious mindsets within IT and engineering team
- Lead security incidents and conduct lessons learned exercises to drive continuous improvements
Client Engagement:
- Act as the main point of contact for client queries, presenting the organisations' security posture and program when required

Risk Management:
- Help the organization understand its risks and design plans to mitigate key risks
- Accountable for the successful running of the ISMS

Data Protection:
- Build an effective data protection capability, working closely with the DPO and internal data protection coordinators to deliver a globally oriented service

Job requirements

Your Profile:

Leadership:
- A highly collaborative leader who can deliver at pace in a fast-moving environment
- Excellent written and verbal communication skills, especially the ability to translate technical subjects to non-technical audiences
Experience & Knowledge:
- Experience working in a small, agile organization and understanding of its dynamics
- Proven experience in implementing or leading an ISO27001 capability
- Experience building security functions in green/brown field environments
- Working knowledge of security best practices for cloud environments (AWS, Azure)
- Experience supporting data privacy practices, such as conducting DPIA assessments or managing an outsourced DPO service
- Knowledge of global data privacy legislation such as GDPR, CCPA, PECR
Desirable Experience:
- German speaker with B2 level plus.
- Experience implementing or auditing ISO standards, ideally as a Lead Implementor/Auditor for ISO27001
- Knowledge of SOC2 and other industry-specific standards/regulations
- General security-relevant certifications such as CISSP, CISM, CISA are preferred but not necessary

My information

Fill out the information below

Full name

Email address

Phone number

CV or resume

Upload your CV or resume file

Upload a file or drag and drop hereAccepted files: PDF, DOC, DOCX, JPEG and PNG up to 50MB.

Cover letter

Upload your cover letter

Upload a file or drag and drop hereAccepted files: PDF, DOC, DOCX, JPEG and PNG up to 50MB.

Legal Agreements

IntroductionThese terms and conditions shall govern your use of our website.
By using our website, you accept these terms and conditions in full; accordingly, if you disagree with these terms and conditions or any part of these terms and conditions, you must not use our website.
If you register with our website, submit any material to our website or use any of our website services, we will ask you to expressly agree to these terms and conditions.
You must be at least 18 years of age to use our website; by using our website or agreeing to these terms and conditions, you warrant and represent to us that you are at least 18 years of age.
Our website uses cookies; by using our website or agreeing to these terms and conditions, you consent to our use of cookies in accordance with the terms of our privacy policy.
CreditThis document is an amendment of an SEQ Legal document.
Copyright noticeCopyright (c) 2018 Riverflex International Limited
Subject to the express provisions of these terms and conditions:unless otherwise stated, we or our licensors, own and control all the copyright and other intellectual property rights in our website and the material on our website; and
all the copyright and other intellectual property rights in our website and the material on our website are reserved.
Licence to use websiteYou may:view pages from our website in a web browser;
download pages from our website for caching in a web browser;
print pages from our website;
stream audio and video files from our website; and
use our website services by means of a web browser],subject to the other provisions of these terms and conditions.
Except as expressly permitted by Section 4.1 or the other provisions of these terms and conditions, you must not download any material from our website or save any such material to your computer.
You may only use our website for your own personal and business purposes, and you must not use our website for any other purposes.
Except as expressly permitted by these terms and conditions, you must not edit or otherwise modify any material on our website.
Unless you own or control the relevant rights in the material, you must not:republish material from our website (including republication on another website);
sell, rent or sub-license material from our website;
show any material from our website in public;
exploit material from our website for a commercial purpose; or
redistribute material from our website.
Notwithstanding Section 4.5, you may redistribute material explicitly made for distribution such as our newsletter in print and electronic form to any person.
Access to certain areas of our website are restricted. We reserve the right to restrict access to other areas of our website, or indeed our whole website, at our discretion; you must not circumvent or bypass, or attempt to circumvent or bypass, any access restriction measures on our website.
Acceptable useYou must not:use our website in any way or take any action that causes, or may cause, damage to the website or impairment of the performance, availability or accessibility of the website;
use our website in any way that is unlawful, illegal, fraudulent or harmful, or in connection with any unlawful, illegal, fraudulent or harmful purpose or activity;
use our website to copy, store, host, transmit, send, use, publish or distribute any material which consists of (or is linked to) any spyware, computer virus, Trojan horse, worm, keystroke logger, rootkit or other malicious computer software;
conduct any systematic or automated data collection activities (including without limitation scraping, data mining, data extraction and data harvesting) on or in relation to our website without our express written consent;
access or otherwise interact with our website using any robot, spider or other automated means, except for the purpose of search engine indexing; or
use data collected from our website for any direct marketing activity (including without limitation email marketing, SMS marketing, telemarketing and direct mailing).
You must not use data collected from our website to contact individuals, companies or other persons or entities.
You must ensure that all the information you supply to us through our website, or in relation to our website, is true, accurate, current, complete and non-misleading.
Registration and accountsYou may register for an account with our website by completing and submitting the account registration form on our website, and clicking on the verification link in the email that the website will send to you.
You must not allow any other person to use your account to access the website.
You must notify us in writing immediately if you become aware of any unauthorised use of your account.
You must not use any other person’s account to access the website.
User login detailsIf you register for an account with our website, you will be asked to choose a user ID (your email address) and password.
Your user ID must not be liable to mislead and must comply with the content rules set out in Section 10; you must not use your account or user ID for or in connection with the impersonation of any person.
You must keep your password confidential.
You must notify us in writing immediately if you become aware of any disclosure of your password.
You are responsible for any activity on our website arising out of any failure to keep your password confidential, and may be held liable for any losses arising out of such a failure.
Cancellation and suspension of accountWe may:suspend your account;
cancel your account; and/or
edit your account details,at any time in our sole discretion without notice or explanation.
You may cancel your account on our website by contacting us via email or phone.
Your content: licenceIn these terms and conditions, “your content” means all works and materials (including without limitation text, graphics, images, audio material, video material, audio-visual material, scripts, software and files) that you submit to us or our website for storage or publication on, processing by, or transmission via, our website.
You grant to us a worldwide, irrevocable, non-exclusive, royalty-free license to use, reproduce, store, adapt, publish, translate and distribute your content in any existing or future media.
You grant to us the right to sub-license the rights licensed under Section 9.2.
You grant to us the right to bring an action for infringement of the rights licensed under Section 9.2.
You hereby waive all your moral rights in your content to the maximum extent permitted by applicable law; and you warrant and represent that all other moral rights in your content have been waived to the maximum extent permitted by applicable law.
You may edit your content to the extent permitted using the editing functionality made available on our website.
Without prejudice to our other rights under these terms and conditions, if you breach any provision of these terms and conditions in any way, or if we reasonably suspect that you have breached these terms and conditions in any way, we may delete, unpublish or edit any or all of your content.
Your content: rulesYou warrant and represent that your content will comply with these terms and conditions.
Your content must not be illegal or unlawful, must not infringe any person’s legal rights, and must not be capable of giving rise to legal action against any person (in each case in any jurisdiction and under any applicable law).
Your content, and the use of your content by us in accordance with these terms and conditions, must not:be libellous or maliciously false;
be obscene or indecent;
infringe any copyright, moral right, database right, trade mark right, design right, right in passing off, or other intellectual property right;
infringe any right of confidence, right of privacy or right under data protection legislation;
constitute negligent advice or contain any negligent statement;
constitute an incitement to commit a crime, instructions for the commission of a crime or the promotion of criminal activity;
be in contempt of any court, or in breach of any court order;
be in breach of racial or religious hatred or discrimination legislation;
be blasphemous;
be in breach of official secrets legislation;
be in breach of any contractual obligation owed to any person;
depict violence;
be pornographic, lewd, suggestive or sexually explicit;
be untrue, false, inaccurate or misleading;
consist of or contain any instructions, advice or other information which may be acted upon and could, if acted upon, cause illness, injury or death, or any other loss or damage;
constitute spam;
be offensive, deceptive, fraudulent, threatening, abusive, harassing, anti-social, menacing, hateful, discriminatory or inflammatory; or
cause annoyance, inconvenience or needless anxiety to any person.
Limited warrantiesWe do not warrant or represent:the completeness or accuracy of the information published on our website;
that the material on the website is up to date; or
that the website or any service on the website will remain available.
We reserve the right to discontinue or alter any or all of our website services, and to stop publishing our website, at any time in our sole discretion without notice or explanation; and save to the extent expressly provided otherwise in these terms and conditions, you will not be entitled to any compensation or other payment upon the discontinuance or alteration of any website services, or if we stop publishing the website.
To the maximum extent permitted by applicable law and subject to Section 12.1, we exclude all representations and warranties relating to the subject matter of these terms and conditions, our website and the use of our website.
Limitations and exclusions of liabilityNothing in these terms and conditions will:limit or exclude any liability for death or personal injury resulting from negligence;
limit or exclude any liability for fraud or fraudulent misrepresentation;
limit any liabilities in any way that is not permitted under applicable law; or
exclude any liabilities that may not be excluded under applicable law.
The limitations and exclusions of liability set out in this Section 12 and elsewhere in these terms and conditions:are subject to Section 12.1; and
govern all liabilities arising under these terms and conditions or relating to the subject matter of these terms and conditions, including liabilities arising in contract, in tort (including negligence) and for breach of statutory duty, except to the extent expressly provided otherwise in these terms and conditions.
To the extent that our website and the information and services on our website are provided free of charge, we will not be liable for any loss or damage of any nature.
We will not be liable to you in respect of any losses arising out of any event or events beyond our reasonable control.
We will not be liable to you in respect of any business losses, including (without limitation) loss of or damage to profits, income, revenue, use, production, anticipated savings, business, contracts, commercial opportunities or goodwill.
We will not be liable to you in respect of any loss or corruption of any data, database or software.
We will not be liable to you in respect of any special, indirect or consequential loss or damage.
You accept that we have an interest in limiting the personal liability of our officers and employees and, having regard to that interest, you acknowledge that we are a limited liability entity; you agree that you will not bring any claim personally against our officers or employees in respect of any losses you suffer in connection with the website or these terms and conditions (this will not, of course, limit or exclude the liability of the limited liability entity itself for the acts and omissions of our officers and employees).
Breaches of these terms and conditionsWithout prejudice to our other rights under these terms and conditions, if you breach these terms and conditions in any way, or if we reasonably suspect that you have breached these terms and conditions in any way, we may:send you one or more formal warnings;
temporarily suspend your access to our website;
permanently prohibit you from accessing our website;
block computers using your IP address from accessing our website;
contact any or all of your internet service providers and request that they block your access to our website;
commence legal action against you, whether for breach of contract or otherwise; and/or
suspend or delete your account on our website.
Where we suspend or prohibit or block your access to our website or a part of our website, you must not take any action to circumvent such suspension or prohibition or blocking[ (including without limitation creating and/or using a different account).
Solicitation and EmploymentBy submitting a Consultant profile or a Client request for resource or project support to this site you are bound by these terms regarding solicitation and employment
As a Consultant, for Clients to whom you have been first introduced through Riverflex, you agree not to knowingly solicit projects from or propose or agree to any kind of consulting, advisory, or employment arrangement with such party directly or indirectly without written permission of Riverflex for a period of one year from the end of the most recent Project with or introduction to such Client, whichever is later.
As a Consultant, for a period of one year after the termination of your relationship with Riverflex, you also agree not to knowingly solicit for employment any employee or sub-contractor of Riverflex or any Clients to whom you have been first introduced due to your Consultant status.
As a Client you agree that for a 12 month period after the conclusion of an engagement, or introduction of staff or sub-contractors, whichever expires last, there will be a Restriction Period. Should you, within this period, wish to engage the services of one of Riverflex’s staff or sub-contractors other than through Riverflex a fee will be payable equivalent to 12 weeks of the gross rate for the services.
ConfidentialityBy submitting a Consultant profile or a Client request for resource or project support to this site, you agree not to disclose or to attempt to use or personally benefit from any Confidential Information provided within the site or during a Project
Confidential Information shall include:the identity of Clients;
information about projects;
information about the business of a Client;
names and contact details of other Riverflex Consultants;or
any other confidential information of Riverflex or its Clients.
VariationWe may revise these terms and conditions from time to time.
The revised terms and conditions shall apply to the use of our website from the date of publication of the revised terms and conditions on the website, and you hereby waive any right you may otherwise have to be notified of, or to consent to, revisions of these terms and conditions
If you have given your express agreement to these terms and conditions, we will ask for your express agreement to any revision of these terms and conditions; and if you do not give your express agreement to the revised terms and conditions within such period as we may specify, we will disable or delete your account on the website, and you must stop using the website.
AssignmentYou hereby agree that we may assign, transfer, sub-contract or otherwise deal with our rights and/or obligations under these terms and conditions.
You may not without our prior written consent assign, transfer, sub-contract or otherwise deal with any of your rights and/or obligations under these terms and conditions.
SeverabilityIf a provision of these terms and conditions is determined by any court or other competent authority to be unlawful and/or unenforceable, the other provisions will continue in effect.
If any unlawful and/or unenforceable provision of these terms and conditions would be lawful or enforceable if part of it were deleted, that part will be deemed to be deleted, and the rest of the provision will continue in effect.
Third party rightsA contract under these terms and conditions is for our benefit and your benefit, and is not intended to benefit or be enforceable by any third party.
The exercise of the parties’ rights under a contract under these terms and conditions is not subject to the consent of any third party.
Entire agreementSubject to Section 12.1, these terms and conditions, together with our privacy and cookies policy, shall constitute the entire agreement between you and us in relation to your use of our website and shall supersede all previous agreements between you and us in relation to your use of our website.
Law and jurisdictionThese terms and conditions shall be governed by and construed in accordance with English law.
Any disputes relating to these terms and conditions shall be subject to the exclusive jurisdiction of the courts of England.
Our detailsThis website is owned and operated by Riverflex International Limited.
We are registered in England and Wales under registration number 11037271, and our registered office is at Unit 7, Daleside House, Park Road East, Calverton, Notts, NG14 6LL
You can contact us by email at info@riverflex.com

Information Security Officer (Permanent)

Job description

Job requirements

Your Profile:

Introduction

Credit

Copyright notice

Licence to use website

Acceptable use

Registration and accounts

User login details

Cancellation and suspension of account

Your content: licence

Your content: rules

Limited warranties

Limitations and exclusions of liability

Breaches of these terms and conditions

Solicitation and Employment

Confidentiality

Variation

Assignment

Severability

Third party rights

Entire agreement

Law and jurisdiction

Our details

All done!