Information Security Officer (M/F/X)

INFORMATION SECURITY OFFICER (M/F/X)

Do you want to make a difference? Join our team in Bonn for a full-time position, as soon as possible!

The DHL Group team is the leading mail and logistics service provider for the world. As one of the planet’s largest employers operating in over 220 countries and territories, we see the world differently. Join our team and discover how an international network that is focused on service, quality, sustainability and is able to connect people and improve lives through the power of global trade. And not just for our customers, but for every member of our team as well.

DHL Data & AI is a service line in DHL Group, focusing on leveraging data to create business value. It consists of a dynamic, innovative, and globally diverse team with approximately 120 talented professionals, including Data Engineers, Cloud Engineers, DevOps Engineers, Data Scientists, and Architects. With presences in Singapore and Italy, Bonn serves as DHL Data & AI’s headquarter. The team’s purpose is to unleash the power of data science, drive x-Business Unit AI solutions, foster a data-driven culture, and accelerate digitalization within DHL Group. The team embraces diversity with over 20 nationalities represented and a 30% female workforce, fostering collaboration and the pursuit of excellence.

• Provide direction, oversight, and execution guidance, and influence security for DHL Group cloud solutions provided by the DHL Data & AI service line.
• Collaborate with information security experts of IT service providers, security business services engineering, and risk and compliance management to advise business customers with security technology roadmaps, architecture, and standards to support the IT security of the DHL Group.
• In your functional role you will report to the DHL IT Group Functions CISO.

• Development and maintenance of security governance processes and documentation in the context of building a Google Cloud Platform (GCP) - related advanced analytics platform for DHL.
• Advise, communicate, consult on, and facilitate risk management decisions to different types and levels of stakeholders.
• Advise on creation of Information Security Concepts (ISC) for on-prem, Azure, and GCP services and applications developed and deployed by DHL Data & AI.
• Assess, describe, and position advanced technical complexities from a security perspective and align with the CISO organization.
• Consult on the vulnerability management process, including identification, assessment, and remediation of security vulnerabilities.
• Assess overall security posture of existing and newly developed applications and coordinate alignment on implementation of controls and mitigation of risks with the CISO organization.
• Consult on the implementation of security controls and measures in new (GCP) and existing (Azure) cloud environments.
• Leverage senior-level IT security technical expertise in Kubernetes and cloud environments to support the security effort of the migration from on-prem to GCP and to consolidate the security posture on Azure.
• Advise on implementing necessary tools and systems to support information security efforts.
• Participate in architecture and go-live reviews, ensuring security aspects are sufficiently covered.

• Bachelor/Master in Computer Science.
• Approximately 10 years of practical experience in designing enterprise security architecture including SSDLC and Kubernetes Runtime and Container Security.
• Experience with CIS benchmarks, ISO27001, NIST, BSI recommendations, OWASP best practices, and threat modeling.
• Familiar with security principles and have a critical mindset.
• Strong knowledge of current and legacy security technologies, as well as emerging technologies and IT trends.
• Experience working in an international company.
• Experience engaging with large and heterogeneous stakeholder groups including senior management, technology experts, end users, business, and vendor representatives.
• Visionary attitude for a Security-First approach, automation, and standardization.
• Fluency in English; German skills are a plus.

• Knowledge of vulnerability management concepts and strategies to implement Github Actions for SSDLC using PrismaCloud, Checkov, SBOM, and other related SecDevOps tooling.
• Experience with policy solutions like OPA Gatekeeper or Kyverno.

• Comprehensive training programs, workshops, and e-learning resources to prioritize your growth and development.
• A flexible work arrangement that blends remote work and office presence, promoting work-life balance and adaptability.
• A competitive salary package, inclusive of various benefits, to ensure employee well-being and satisfaction.
• Diverse commuting options, including a job ticket for public transportation, parking space for a monthly fee, or bicycle leasing.
• Access to DHL Group's daycare facilities for working parents.
• A dynamic, cooperative, and international environment that encourages new insights.

If you are interested in this responsible position with its varied tasks, please click on “Apply Now” and send us your complete application, including your CV, academic and professional references, your salary expectations and your earliest possible start date. If you have any questions, please reach out to the D&A recruiting team on dna.recruiting @dhl.com. For more information on DHL Data & AI, you can find us here: LinkedIn DHL Data & AI

We look forward to your application - apply now! CONNECTING PEOPLE. IMPROVING LIVES.