Information Security Compliance Manager (m/f/d)

About Us
Symrise is a global supplier of fragrances, flavors, food, nutrition, and cosmetic ingredients. Its clients include manufacturers of perfumes, cosmetics, food and beverages, pharmaceuticals and producers of nutritional supplements and pet food.

Its sales of € 4.7 billion in the 2023 fiscal year make Symrise a leading global provider. Headquartered in Holzminden, Germany, the Group is represented by more than 100 locations in Europe, Africa, the Middle East, Asia, the United States and Latin America.

Symrise works with its clients to develop new ideas and market-ready concepts for products that form an integral part of everyday life. Economic success and corporate responsibility are inextricably linked as part of this process.

Symrise - always inspiring more...

Your Role
The Information Security Compliance Manager (m/f/d) plays a critical role in protecting the organization's compliance posture with global regulatory and security standards for business operations as well as industrial systems and processes in both an Information Technology (IT) and Operational Technology (OT) environment.

As part of Symrise's IT & Cyber Security team, you will lead the development, implementation, and continuous enhancement of the Information Security Management System (ISMS) and drive alignment with governance frameworks and legal obligations. As a trusted advisor and collaborative partner, you will ensure that IT and OT systems are resilient, secure, and compliant across the organization in an ever-changing threat and regulatory landscape.

Key responsibilities include monitoring compliance with global regulatory requirements, harmonizing governance practices across IT and OT domains, and continuously advancing the organization's cybersecurity maturity. The role will involve creating and refining security policies, strengthening OT-specific controls, addressing evolving security threats, and contributing to security awareness and training initiatives.

• Oversee the implementation, maintenance, and continuous improvement of the Information Security Management System (ISMS), ensuring compliance with organizational goals and regulatory requirements like NIS2 in both IT and OT environments
• Develop, revise, and enhance information and OT security policies, procedures, and guidelines to meet evolving industry standards, regulatory obligations, and operational needs
• Drive the alignment and harmonization of governance structures across global IT and OT environments, ensuring consistent practices and adherence to security frameworks
• Collaborate with business, IT, and OT stakeholders to define, monitor, and address compliance requirements, ensuring comprehensive compliance management practices across both domains
• Work closely with global teams to strengthen the legal and audit readiness of information and OT security processes, elevating the organization's security maturity
• Support ongoing initiatives and projects in IT and OT security, ensuring they align with organizational goals and are embedded in continuous improvement efforts
• Contribute to and lead security awareness programs tailored for IT and OT environments, fostering a culture of security resilience across all stakeholders
• Act as the central point of contact to translate compliance obligations into actionable strategies, prioritizing the reinforcement of security measures for IT and OT environments

About You

• At least 3 years of experience in information security, with demonstrated expertise in IT and OT security environments
• Relevant certifications (e.g., ISO 27001 Lead Auditor, GICSP, CISM, CISA, CRISC, or similar) or a willingness to obtain them
• Experience managing an ISO 27001 Information Security Management System (ISMS) is a prerequisite
• Strong experience in auditing and ensuring compliance with information security and OT security standards, including managing complex regulatory requirements
• Comprehensive knowledge of the latest ISO 27001 standards, NIS2 regulations, and cybersecurity legislation applicable to both IT and OT environments, particularly within European and German contexts
• Proven ability to develop clear, effective written outputs such as policies, standards, and compliance reports for IT and OT environments
• Structured, self-reliant, and analytical working style, combined with excellent collaboration and stakeholder management skills
• Professional, solution-driven, and customer-oriented approach
• Strong communication skills in English (written and spoken); proficiency in German is an advantage

Our Offer
Become part of our open and transparent culture. It will give you the opportunity to flourish and to develop inspiring experiences that contribute to the health and well-being of consumers in 160 countries around the world. Putting our employees in the focus fuels our strong company growth above market rates and makes us an excellent place to develop your career.

Come join us and embark on a fascinating journey with Symrise.

If you feel that you fit the above criteria, then please apply by using our online application system. Your application will be treated confidentially.