Principal Information Security Specialist (m/w/d)

Stellenbeschreibung:

Principal Information Security Specialist (m/w/d)

It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks. This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.

All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!

Overview

NVISO protects European society from cyber attacks by offering cyber security services to private and governmental organizations to help them prepare for, prevent, detect and respond to cyber security incidents.

Responsibilities

Leading client’s IT or security teams with the implementation of strategic security programs and projects. You solve together with other NVISO experts customers challenges or work in full integration with the client organization
Defining and refining security governance, policies, processes and guidelines in all areas of the cyber security field
Helping our clients defining, implementing or refining their Security Strategy by developing Enterprise and IT governance structures through policies, standards, processes and operational structures
Defining Information Security Architectures, mapping business functions into the cyber security and IT environment
Defining action plans in concertation with internal and external stakeholders
Assisting in reaching or maintaining compliance to information security legal, contractual, or internal requirements
Defining a Security Strategy, supported by a corporate risk and threat assessment in collaboration with key stakeholders in the organization
Reporting to the senior management and board of directors of the client
We work both for very large and small organizations that all have one goal in common: making significant progress in their protection against current and emerging cyber threats

Requirements

A minimum of 7+ years of experience in managing GRC and/or CISO-related projects
Bachelor or a Master’s degree; education need not be in IT/technology, but you should have some affinity with technology
Certifications in ISO 27001 (ISM or Auditor), CISSP or GSEC are beneficial
Practical experience with cyber security controls frameworks like ISO27002, NIST CSF, BSI or CIS Controls are mandatory
Experience mapping NIS2 and/or DORA requirements to practical implementations in enterprises and banks is beneficial
Autonomous with opportunity for team collaboration
Strong communicational skills and concern for colleagues
Project management skills
Demonstrated ability to independently lead and manage large-scale projects aligned with strategic objectives
Initial leadership experience desirable
Supportive of colleagues’ professional development
Eager to develop NVISO’s methodologies, processes, tools and best practices
Results-oriented with focus on quality and client satisfaction
Excellent German and English communication skills, both verbal and written
Eligible for NATO CLEARANCE (See HERE for more information)

Benefits

At NVISO, we care. We offer a highly competitive remuneration package including financial and non-financial components:

A training budget of 10,000 EUR plus 10 days paid time off rolling over two years
Opportunity to work with and learn from leading people in European cyber security; access to continuing education opportunities (GSE, GXPN, CISSP, OSCP, etc.)
A forward-thinking and agile company that supports new initiatives
Unique team events (Lisbon, Dubai, Malta, etc.)
A sophisticated coaching concept starting on day 1
30 days of vacation
Flexible working hours and home office options (Working Abroad Option)
Cost absorption for local transport ticket and BahnCard50
Company bike leasing
A modern office in the heart of Frankfurt / Munich / Vienna

Sounds interesting? Then apply now!