Information Security Manager Governance & Compliance (m/f/d)

Construction, operation and continuous development of various coordinated ISMS from “pragmatic Light Touch “ added “ISO 27001 certified” taking into account other relevant frameworks and legal requirements (e.g. NIST CSF, NIS-2, HIPAA) and across all BIOTRONIK sites. Responsibility for governance & compliance in IT security, including creation and control of policies, implementation of audits, collection of key figures, etc. Ensuring IT security in the supply chain: implementation and further development of supplier security solutions as well as implementation of legal requirements (e.g. NIS-2, industry-specific health requirements). Central respondent for internal and external audits, certifications and authorities, including preparation, monitoring and follow-up of measures. Close cooperation with CISO, departments, IT and international locations for the understandable treatment of risks, compliance status and recommendations for action to top management and board level.

Complete university studies (e.g. computer science or comparable) and ideally 10+ years of experience in information security with a focus on ISMS, governance & compliance in regulated environments Funded understanding of IT architectures and profound knowledge in IT security processes (e.g. network, endpoint, identity and cloud security) in order to be able to independently evaluate technical solutions and controls In-depth knowledge of ISO 27001 and other information security frameworks (e.g. NIST CSF, NIS-2, HIPAA) as well as detectable experience in design and operation of ISMS on different maturity levels of experience in the field of supplier security management and risk analyses along the supply chain, ideally taking into account current EU and national regulations Impressive analytical skills and strength in the comprehensible presentation of complex facts in target group-oriented reports to the board and supervisory boards Very good stakeholder and change competence: ability to take people with no disciplinary leadership responsibility and anchor sustainable changes in a global matrix organization German and English knowledge in word and writing as well as joy in working in a truly international environment High intrinsic motivation for technology and security, hands-on mentality coupled with a pragmatic, result-oriented approach; Certifications such as ISO 27001 Lead Auditor, CISSP, CISM or CISA are advantageous

belonging to an international company that saves lives with its medical devices and helps people to live longer and better life Unlimited employment and attractive tariff containers (IG metal) incl. collective agreement fittings, like 30 days vacation Option for mobile work and flexible working hours Intensive integration incl. welcome event and Buddy program Travel cost grant for public transport or free staff parking as well as secured bicycle spaces at the site Staff canteens with a fresh and varied gastronomic offer Active Health Management, e.g. Health Days, Business Doctor, Vaccines Corporate Benefits, such as sports and network offerings in our BIOTRONIK teams and employee groups, as well as an occupational pension and a BU insurance Exclusive employee discounts, including benefits in fitness chains, for travel or fashion brands Location: Berlin | Working time: Full time | Type of contract: Unlimited Disabled people are preferably taken into account with the same suitability. In principle, there is also the possibility of parttime employment. Please note that applications that reach us on the postal path will only be sent back if a sufficiently franked return envelope is attached. .