Information Security Manager (m/w/d)

Design the future of data protection and health security with us! At Thieme we offer you the opportunity to use your expertise as Information Security Manager (m/w/d) to create innovative solutions for sensitive data and make a real difference. Together with you, we make medical software safer! The Thieme Group is a market leader in information and services that help improve health and health care. With digital solutions in medicine and chemistry, Thieme supports information and communication processes in science, education, further education and patient care. Together with a broad expert and partner network, the digital healthcare service provider ensures that it is medical-scientific, but also didactic-technologically tactic. With innovative new and further developments, the globally active over 1000 employees of the family business are committed to better medicine and more health every day. Area: Central Process and Quality Management Start: At the next time Duration of contract: unlimited Working time: full or part-time

You support development teams in integrating security measures into our healthcare software solutions You shape the implementation of data protection and security policies for the development, operation and service of our software products together with the central units for data protection and information security in Stuttgart. You ensure that all internal processes and products comply with the relevant legal requirements, such as the GDPR. You adapt the local processes to the central information security management system (ISMS) according to ISO 27001 or comparable standards and monitor their compliance with the local specialist departments. You accompany the implementation of an internal control system (IKS) as part of the BSI C5 test and ensure local implementation. You identify and evaluate security risks and implement risk mitigation measures, including internal training to strengthen awareness of data protection and information security. For external audits, you will ensure a smooth operation at the site and a successful certification.

Complete studies in the field of IT security, computer science, business informatics or a comparable qualification Experience in data protection and information security management, ideally in a regulated environment such as healthcare or software development Practical knowledge of ISO 27001 and the GDPR are minimum requirements Knowledge of other standards such as BSI C5, AI Act, NIS2, ISO 9001 and ISO 13485, ISO 31001 and ISO 14971 are advantageous Analytical and conceptual skills Efficient, result-oriented and focused operation Communication strength and consulting competence, also against non-technical stakeholders independent and structured working with a high level of responsibility German and English language skills in word and writing

With the possibility of sliding time (40h/week with full time) and for mobile work within Germany, you shape your individual working. Use state-of-the-art hardware that we provide to you, of course. A family-run, internationally active company - Be part of our digital transformation and actively shape the future in healthcare. Accompany pioneering innovations in the field of digitalization and set new standards together with us. Experience a New Work Culture of Participation - we focus on empowerment and value-adding interaction. Benefit from individual offerings of Thieme.ACADEMY that promote your strengths and advance your personal development. Benefit from various health and sports activities. JOBV1_EN