Senior Information Security Governance Expert (all genders)

The Global Information Security department of Evotec is searching for a highly motivated and dedicated

Senior Information Security Governance Expert (all genders)

Full time and permanent

Responsibilities:

• Support the implementation of the ISO 27001 standard across the organisation with the ability to take the lead on some specific domains such as Identity & Access Management, IT Operation Security, Asset Management or Secure Software Development
• Support the ISMS certification programs, including taking part in internal and external audits
• Ensure that the organization’s information security policies are maintained and remain relevant
• Initiate and control the implementation of information security measures
• Initiate and coordinate target group-oriented awareness and training measures on the topic of information security
• Conduct Information Security risk assessments (ISMS risks, application and infrastructure risks, TPRM)
• Support customer security assessments and perform supplier security assessments
• Support information security incident management

Qualifications:

• Bachelor's or Master's degree in Business Administration, Information Technology, or a related field, or equivalent work experience
• Sound professional experience in a complex Information Security Governance environment, ideally in a highly regulated field such as pharmaceuticals, biotech, or healthcare
• Profound technical knowledge of security technologies and enterprise IT Security solutions
• Excellent knowledge of security management systems and respective standards (ISO 27001, NIST, CIS, GMP)
• Industry certifications such as PMP, ITIL, Agile are a plus
• Industry certifications such as ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CISSP, CISM, SANS, GSEC, etc. are desired
• Experience in leading projects related to the design and assessment of information security structures and processes
• Proven track record in dealing with complex information security & change projects and managing conflicting situations and crisis scenarios
• Ability to adapt to a fast-moving information security landscape and keep pace with the latest concepts, new security challenges, and cyber threats
• Thrives on change, showing an ability to continuously develop the organization's information security
• Proficiency in verbal and written communication in English; German, French, or Italian language skills are an advantage

Our offer (Hamburg, Germany based):

• A position within a vigorous and exciting professional environment promoted by an open culture and a spirit of community
• A diverse, international workforce with a dynamic working environment that fosters creativity, innovation, and teamwork
• 30 days of annual holiday, monthly allowance for public transportation, and in-house canteen
• Capital forming benefits, flexible working hours, holiday pay, and annual bonus depending on performance
• Benefits may vary by location and will be discussed separately

To apply, please click on the “Apply” button and provide your application documents (CV and cover letter, including earliest possible start date and salary requirements). We look forward to getting to know you and your application.

FR: Dans le cadre de sa politique Diversité, Evotec étudie, à compétences égales, toutes les candidatures, dont celles des personnes en situation de handicap.

ENG: In the frame of our Diversity policy, Evotec considers, with equal competences, all applications including people with disabilities.