Information Security Manager (m/f/x)

Job Description

Join ZEISS as an Information Security Manager and be part of a company that values innovation, expertise, and diversity. In this role, you will define, develop, and review information security policies, ensure compliance with ISO 27001, and improve risk management processes. You will support communication of the ZEISS Information Security Program across all regions and drive the development of the ZEISS GRC tool.

The position reports to the Head of Information Security Certifications and Governance and involves developing and maintaining the ZEISS Information Security Program, aligned with international standards and regulatory requirements.

Minimum Requirements

• University degree in Information Security, Cybersecurity, Computer Science, or related field, or equivalent experience.
• At least 7 years of experience in Information Security or related areas such as ISMS, GRC, ISO 27001, auditing.
• Deep expertise in designing, implementing, and maintaining ISO/IEC 27001-compliant ISMS.
• Proven track record in delivering strategic security initiatives.
• Strong analytical, problem-solving, and leadership skills.
• Experience managing KPIs, governance frameworks, and executive reporting.
• Understanding of compliance with legal and regulatory standards like GDPR, NIS2, SOX.
• Excellent communication and stakeholder management skills.