Senior Expert IT-Risk- und IT-Business Continuity Management im CISO Office (m/f/d)

As a Senior Expert IT-Risk- und IT-Business Continuity Management, you are part of the CANCOM Group Security (concern security) with a focus on the Group-wide IT-Risk and IT-Business Continuity Management of the CANCOM Group. Your tasks related to IT-BCM include: You support the development and implementation of business continuity strategies and the associated management system, according to the requirements of EU-DORA, ISO 22301 and BSI's basic IT protection Implementation of business impact analyses to identify critical business processes and their dependencies, as well as the creation and maintenance of emergency plans and recovery strategies for IT systems and data The definition and coordination of regular tests and exercises to review the business continuity plans, in close cooperation with various Divisions to ensure that all business units are prepared for emergencies The training and awareness of employees in terms of business continuity and emergency management and the creation of reports and presentations for the Management on the current state of business continuity measures and proposed improvements Your tasks related to IT-RM include: You actively support the implementation of IT risk management strategies, according to the requirements of ISO 27005, ISO 31000 and EU-DORA The implementation of risk analyses and assessments to identify potential threats to the IT infrastructure Monitoring and evaluation of the effectiveness of existing safety measures and protocols Promoting cooperation with various departments to ensure that all IT risks are properly managed Your overarching tasks include: Regular preparation of reports and presentations for CISO, Executive Board and Management to report on current status and proposed measures Support in the development of existing staff in the existing team

You have professional experience in information security, IT-risk management and IT-Business Continuity Management through a relevant completed study and/or multi-year (min. 5 years) You have profound experience and knowledge in the application of relevant standards and standards, such as ISO/IEC 27001, ISO/IEC 27005, ISO/IEC 31000, BSI Basic / BSI-C5, ISO 22301 You are puncturing through structured, analytical thinking and high self-responsibility You have a high level of communication paired with strength of conviction and enforcement You are looking forward to a varied activity with a maximum of 10% readiness

Flexible working hours and mobile office in coordination with the supervisor Discounts thanks to the “Corporate Benefits” portal Bike leasing Free drinks & fruit Further training Employee events