Chief Information Security Officer (f/m/div.)Your contribution to something big:Develop and implement organization-wide security strategies and policies including incident response plans and lead incident response efforts.Lead and manage the information security team.Oversee the implementation and management of security controls and technologies and monitor cyber intelligence measures of external security service providers based on defined metrics.Build relationships with external stakeholders, such as vendors, regulatory bodies, and law enforcement agencies.Establish and maintain an effective security governance framework in close collaboration with other departments to ensure cyber security requirements are included in projects and initiatives.Identify and assess cyber security risks and vulnerabilities and conduct ongoing internal and external security audits and risk assessments.Ensure compliance with relevant legal and regulatory requirements and drive continuous improvement in security practices and processes.QualificationsWhat distinguishes you:Master's degree in Computer Science, Information Technology, Business Administration with strong IT focus or a related field.A strong understanding of information security principles, technologies, and best practices, including knowledge about network security, encryption, access control, vulnerability management, incident response, and risk assessment.Ability to identify and assess potential risks to an organization's information assets and develop effective strategies to mitigate those risks.Excellent leadership and communication skills to convey complex security concepts to non-technical stakeholders and manage teams.Solid understanding of the organization's business objectives, processes, and priorities to align cybersecurity strategies with the overall goals of the organization.Extensive experience in developing and implementing incident response plans, conducting forensic investigations, and coordinating with relevant stakeholders during an incident.Substantial compliance and regulatory knowledge regarding industry regulations and standards relevant to information security, such as GDPR, HIPAA, PCI DSS, ISO 27001, and NIST frameworks.Strong negotiation and vendor management skills to ensure that the organization's security needs are covered effectively and cost-efficiently.
#J-18808-Ljbffr