Chief Information Security Officer (m/f/d)

Pay Competitive

Employment type Full-Time

• Req#: JR101402

Join a diverse team of approx. 2000 professionals across four continents, driving innovation and growth within intive’s technology hubs. Work alongside industry experts trusted by leading brands like Audi, BMW, Deichmann, Meta, NewsCorp, Tandem, Paramount, Vorwerk, and Warner Bros. Discovery to create pioneering, sustainable digital experiences.

At intive, agile thinking and deep industry expertise come together across Automotive & Mobility, Commerce, Financial Services, Healthcare & Life Sciences, and Technology, Media & Communication. Be part of a team that’s shaping the future of digital innovation.

The Chief Information Security Officer is responsible for establishing and maintaining the enterprise vision, strategy, architecture, and a long-term roadmap that ensures that intive’s information assets are adequately protected. A key element of this role is communicating security at a strategic level to executive management, senior management and evangelizing security across the business to drive adoption of security best practices.

What you will be doing:

• Develop a strategic, long-term information security and IT risk management strategy and program and supervise its implementation to ensure that intive’s information assets are adequately protected.
• Development, planning and implementation of a long-term security strategy for the company.
• Budget planning and calculation.
• Planning and implementation of awareness measures to maintain and expand company-wide security perception.
• Work with senior leaders across the business to assess and communicate acceptable levels of risk.
• Identify, evaluate and report on information security risks, practices and projects to the Executive Committee and the Board of Directors, and provide subject matter expertise on security standards and best practices (e.g. TISAX, ISO 27001, PCI, etc.).
• Develop the Board’s understanding of security beyond a ‘compliance-only’ view.
• Lead the development of up-to-date information security policies, procedures, standards and guidelines, and oversee their approval, dissemination, and maintenance in line with ISO27001 and TISAX.
• Ensure that the security management program follows applicable laws, regulations, and contractual requirements.
• Act as the champion for the enterprise information security program and foster a security-aware culture.
• Oversee the evaluation, selection and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive.
• Partner with enterprise architects, infrastructure, and applications teams to ensure that technologies are developed and maintained according to security policies and guidelines.
• Manage regular intrusion detection and vulnerability reporting, internal and external IT audit groups reviews, and the coordination of all required fixes.
• Develop business metrics to measure the effectiveness of the security management program and increase the maturity of the program over time.
• Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action.
• Liaise with law enforcement and other advisory bodies as necessary to ensure that the organization maintains a strong security posture.
• Oversee incident response planning and the investigation of security breaches, and assist with any associated disciplinary, public relations and legal matters.

You're a good match if you have:

• Degree in computer science, business informatics, business administration or a technology-related field
• Professional security management certifications (CISSP, CISM, CISA, Lead Auditor)
• Knowledge of common information security management frameworks, such as ISO/IEC 27001 or TISAX
• Hands on experience with the implementation and certifications of information security management frameworks
• Excellent written and verbal communication skills and high level of personal integrity
• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
• Experience with contract and vendor negotiations and management including managed services
• Ability to speak fluently in English and German
• Supervisory and incident management skills

Why intive?

• Remote Work, Flexibility & Balance - Hybrid Work. You are welcome in our offices in Munich, Regensburg, Stuttgart or Buxheim, but you don't have to be on-site. You choose your equipment: MacBook or Dell and a company cell phone of your choice for professional and private use.
• Performance management - regular partnership meetings between each employee and his manager. You can create a career path based on your goals. We provide training, mentoring, and support to help you along the way.
• Training & Mentorship - Learning and development are an important part of our corporate culture. For this we work with a skill matrix, trainings and a buddy program.
• Tech Hubs - You become part of a community of colleagues who share your interests. There is room for internal exchange and access to the latest technologies.
• Culture & Connection - We foster connections within our teams, as well as across areas of responsibility and hierarchical levels. We make sure that everyone is appreciated and feels connected to our mission and our colleagues. In addition, we organize regular team events (Summer Games, Christmas party, Oktoberfest, etc.).
• Benefits - We offer numerous additional benefits e.g working from abroad- 182 days per year worldwide, public transport, a childcare allowance, capital-forming benefits and a job bike.

#LI-AC2

intive is a digital transformation partner for Automotive, Finance, Media & Communications, Consumer Services, Industrial and High-Tech companies. intive creates exceptional software solutions that reach into the future.