Chief Information & Product Security Officer (f / m / d)

We’re the Yunex Traffic team, a global leader in intelligent traffic systems. We have been working on revolutionary technologies for the mobility of the future. We develop solutions for traffic management leading to greater traffic flow, safety, efficiency and environmental friendliness. The results of our work are perceived by the citizens in cities around the world.

Who are we looking for?

We are seeking a highly skilled and experienced Chief Information and Product Security Officer to lead the cybersecurity department, covering both enterprise and product cybersecurity practices. The cybersecurity organization employs 10 direct reports operating from Germany, Czech Republic, United Kingdom, and the US.

• Shape the future of cybersecurity in intelligent traffic systems, leading a global team protecting both our enterprise and our products.
• Direct a team of 10 professionals across Germany, Czech Republic, United Kingdom, and the US.
• Define and deliver a cybersecurity strategy aligned with business and shareholder goals.
• Strengthen IT security frameworks, governance, KPIs, and compliance.
• Oversee risk assessments, incident response, and vulnerability management.
• Ensure adherence to international standards (e.g., NIST CSF, ISO 27001, IEC 62443).
• Drive cloud security governance and secure product hosting.
• Embed security in the SDLC and DevSecOps practices.
• Lead product security testing, threat modeling, and hardening initiatives.
• Manage RFP security responses and customer security requirements.
• Coordinate with SOC, cloud, and security advisory service providers.
• Partner with risk management and shareholders on strategic initiatives.
• Report regularly to the Supervisory Board on security posture and regulations.
• Foster a high-performance culture through coaching, reviews, and development planning.

• University degree in computer science, cybersecurity, or a related STEM field.
• Minimum 8 years of experience in leadership and people management roles.
• Experience with regulations for operators of critical infrastructure and providers of digital products and services in the European Union, United States, and United Kingdom (e.g. NIS2 and Cyber Resilience Act).
• Clear understanding of main cybersecurity standards and frameworks such as the NIST CSF, ISO 27001, ISO 27005, IEC 26443, and IEC 62264.
• Experience with cloud and OT security.
• Knowledge and experience with DevSecOps and security testing methodologies such as Software Composition Analysis, Static Application Security Testing, Dynamic Application Security Testing, and Hardening.
• Excellent communication skills. Fluent in English (C1+).
• Proven ability to coordinate and communicate on director level in a multinational group.

• German language is a plus.
• Understanding and experience in national implementations of NIS and NIS2 are a plus, e.g. in Germany and Austria.
• CISM, CISSP, or CCISO certifications.
• Knowledge and experience with agile and waterfall project management methodologies.

• Competitive payment in line with the market
• 30 days of vacation
• Flexible working time models with 2-3 days of mobile working per week
• Company pension scheme
• Childcare allowance
• Monthly shopping vouchers
• An open and diverse corporate culture where you can develop your strengths
• Extensive training opportunities in our Yunex Traffic Academy and on our online learning platform