Information Security Risk Management (ISRM) Specialist (m/f/d)

Ensuring compliance with legal, regulatory, customer-specific and internal requirements in the field of information security (e.g. ISO/IEC 27001, TISAX, KRITIS, NIS2, cybersecurity in aviation security) Development, implementation, control and continuous improvement of corresponding ISMS (Information Security Management Systems) Implementation, documentation and follow-up of risk analyses as well as support and advice in dealing with a central risk management tool Assessment of risks, derivation of risk mitigation and monitoring of their implementation Preparation, monitoring and follow-up of internal and external audits Coordination with internal and external auditors and authorities Support in the creation and maintenance of guidelines, processes and documentation in the field of information security Advising specialist departments on security-relevant topics and compliance requirements Close cooperation with our technical and organizational information security teams and other cross-sectional functions such as e.g. B. Data protection or quality management Monitoring and evaluation of new legal requirements and their implementation in the company Support in the review of safety incidents and interruptions in our operational continuity and implementation of risk mitigation measures

Complete study in the field of IT, information security, business informatics, compliance, IT law or a comparable qualification Multiannual professional experiences in the field are advantageous Knowledge of relevant standards and standards (e.g. ISO 27001, NIST, BSI, TISAX, KRITIS, NIS2) Experience in risk management as well as dealing with appropriate risk detection and assessment tools Good knowledge of project management Experience in building and operating an ISMS Analytical thinking, structured working, high problem-solving competence and high self-responsibility Communication strength and ability to cooperate with different stakeholders Very good knowledge of German and English in word and writing Certifications such as ISO 27001 Lead Implementer/Auditor, CISM, CISSP or comparable are advantageous

You can look forward to Continuous training: develop your skills and expand your expertise with our professional training programs. Great team: You are the people who make the difference - and with us you become part of a great team. Flat hierarchies: Thanks to our slender organizational structure, you can go directly into exchange with the decision-makers. Space for Innovation: Turn your ideas into an environment that promotes creativity and empowers you to make changes. Events: From team excursions to Christmas celebrations to networking events, we build strong connections by spending time together. Fast decision-making processes: Bring things forward faster with optimized processes that promote efficiency and effectiveness. .