Information Security Officer / CISO (m/w/d), Aalen

PALM is one of the leading companies in the European paper industry. We operate graphic papers, corrugated board raw paper and corrugated board packaging with 38 companies. Our raw material is 100% waste paper. To strengthen our team in central IT at our headquarters in Aalen, we are looking for a “Information Security Officer / CISO” (m/w/d) in full time at the next time possible.

Responsibility for strategic orientation and operational control of information security in the Palm Group Construction, maintenance and further development of the Information Security Management System (ISMS) according to ISO 27001 / TISAX Implementation of regulatory requirements from NIS2, EU Data Act and EU AI Act as well as relevant data protection regulations (GDPR) Creation, implementation and monitoring of security policies, processes and emergency concepts (including ISO 23301 BCM) Implementation of risk analyses, threat assessments and regular audits Advising management and close cooperation with CIO, IT, data protection officers and departments Management of Awareness programs and training for employees Control of external partners and service providers in the field of IT security Incident management and reporting of security-relevant incidents to the management and, where appropriate, supervisory authorities

Complete studies in the field of computer science, IT security, business informatics or comparable qualifications Multiannual experience in information security / IT security, ideally in producing companies Knowledge of relevant standards and standards (e.g. ISO 27001, TISAX, ISO 20000, ISO 23301, ISO 42001) Practical experience in implementing regulatory requirements such as NIS2, EU AI Act, EU Data Act, GDPR Experience in building and operating an ISMS as well as in controlling audits Ability to understand complex technical issues for management and departments Strong communication and enforcement capability at all levels Very good knowledge of German and English in word and writing Certifications such as CISSP, CISM, ISO 27001 Lead Implementer / Auditor or TISAX expert are advantageous

Safe and indefinite workplace in a future-oriented family business A corporate culture characterized by appreciation and collegial cooperation with short decision-making Attractive salary package with 13th monthly salary and holiday allowance 30 days off Flexible working hours and home office Excellent further development possibilities through our Palm Academy Job-Bike, Corporate Benefits, Supported Occupational Care, Lifetime Account, Employee Events, Sustainable Work, etc. The family business Palm is constantly investing and offers crisis-proof jobs in a pleasant operating climate. We allow you to engage in a dynamic team with very interesting and challenging activities. JOBV1_EN