Senior Cyber Security Manager (d/w/m)
Berlin, DE, 10405
Ottobock
Ottobock bietet innovative Produkte in den Bereichen Prothesen, Orthesen, Rollstühle und Mobilität bei neurologischen Krankheiten.Summary Statement
The Ottobock Security Governance is a team of dedicated Cyber Security experts with the mission to secure Ottobock´s information assets and infrastructure worldwide. The team is responsible for defining and implementing a risk-based Cyber Security Management within Ottobock Group worldwide. Ottobock Cyber Security Governance Team monitors the implementation of defined controls and conduct reviews to assess risks and to define mitigation measures. Based on that know-how and the latest technological trends, it consults with the IT and Business departments to improve enterprise Cyber Security globally.
The Senior Cyber Security Manager (CSM) is one of the process owners for all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee, and business information in compliance with the organization's information security policies. A key element of this role is working with the CIO, CISO and the executive management to determine acceptable levels of risk for the organization. This position is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected.
Duties & Responsibilities
- Analyze IT requirements and provide objective advice of information security requirements
- Analyze, design, and implement efficient information security technical and organizational measures
- Manage the installation of security measures / upgrade systems on internal and outsourced systems
- Gather feedback from Business, corporate risk management, IT-compliance, legal and IT-operations to improve the ISMS
- Maintain an information security risk register and assist with internal and external audits relating to information security
- Assist with the creation, maintenance, and delivery of cyber security awareness training for colleagues
- Work close with the Security Operations Center to identify potential IT/IS weaknesses and create/update mitigation plans accordingly
- Contact with stakeholders in relation to cyber security requirements and provide future recommendations
- Conduct reviews to check the implementation status of defined ISMS controls in all Ottobock Group entities and suppliers
- Generate reports for both technical and non-technical staff and stakeholders
Qualifications
- MBA in Information Systems, preferred
- Minimum of 3 resp. 7 years of experience in a combination of risk management, information security, and IT jobs
- Excellent written and verbal communication skills in English and German and a high level of personal integrity
- Understanding of the internal organizational environment and its relationship to the external business environment
- Sound business management skills and knowledge of risk management for cyber security and cybersecurity technologies
- Innovative thinking and leadership with the ability to guide and motivate cross-functional, interdisciplinary teams
- Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or other comparable credentials
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, BSI 100/200, as well as NIST frameworks, including 800-61 and CSF
- Experience in operating an ISMS according to ISO 27001 / NIST 800-x, NIST CSF
- Experience with contract and vendor negotiation and governance including managed services
- Very good knowledge of German and English (speaking and writing)
Benefits
- Attractive remuneration incl. bonus and 30 days vacation
- Flexible & family-friendly working time models (incl. option for mobile working and home office)
- Individual personnel development and further training through Ottobock Academy as well as external training and further education opportunities
- An open corporate culture with regular team events and an exciting international working environment
- Corporate benefits, job ticket, company bicycle, health management offers as well as many more benefits that await you at Ottobock
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISA CISM CISO CISSP Compliance Governance ISMS ISO 27001 ITIL NIST NIST Frameworks Risk management SOC
Perks/benefits: Career development Flex hours Flex vacation Health care Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs