Information Security Manager

Job Description

Information Security Manager

Location: Frankfurt (hybrid or remote)

Our client is seeking an experienced Information Security Manager. In this role, you’ll play a key part in driving the advancement and operational excellence of an organisation-wide Information Security Management System (ISMS), aligned with ISO 27001 and other relevant regulatory frameworks. You’ll support the continuous development of information security practices and ensure regulatory compliance across the business.

Responsibilities:

• Lead the ongoing development and operation of the ISMS in line with ISO 27001 and other regulatory requirements (e.g., internal policies, risk frameworks, audit standards).
• Design and implement effective information security processes and procedures, focused on control, maintenance, and continuous improvement.
• Enhance and manage the organisation's risk management approach specific to information security.
• Conduct reviews of compliance with external regulations and internal security standards.
• Create and refine reporting tools and key performance indicators (KPIs) to monitor information security posture.
• Prepare and present content for Information Security Steering Committees and similar governance forums.
• Act as the central point of contact for internal departments on all topics related to information security.

Your Profile:

• Degree in business informatics, computer science, or equivalent professional experience in a related field.
• Familiarity with leading information security standards and regulations (e.g., ISO 27001, NIS).
• Professional certifications such as CISSP, CISM, or CISA are a strong plus.
• A proactive, process-driven mindset with a passion for optimisation and continual improvement.
• Able to take initiative and manage projects independently to completion.
• Fluent in both English and German; additional are a benefit.