Audit Management – Who Needs Engineers
https://whoneedsengineers.com/wne_live
Software Engineering RecruitmentSun, 20 Oct 2024 00:10:02 +0000en-US
hourly
1 https://wordpress.org/?v=6.6.2https://whoneedsengineers.com/wne_live/wp-content/uploads/2023/06/cropped-wne_logo-3-32x32.pngAudit Management – Who Needs Engineers
https://whoneedsengineers.com/wne_live
3232Information Security Manager
https://whoneedsengineers.com/jobs/cybersecurity/information-security-manager-11/
Sun, 20 Oct 2024 00:10:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/information-security-manager-11/Information Security Manager
Job Description:
We are seeking an experienced Information Security Manager to play a pivotal role in shaping the information security landscape within our organization. This individual will work closely with senior leadership, particularly the Director of Risk & Compliance and the Chief Information Security Officer, to design, implement, and uphold an Information Security Management System (ISMS), ensuring that our systems and processes align with global standards. You will be responsible for coordinating IT security requests, managing audits, maintaining risk registers, and overseeing compliance. Your expertise will guide the establishment of security policies and procedures that protect our data integrity and confidentiality while ensuring we meet industry standards and certification requirements. This role requires a proactive approach to incident response and security reviews, as well as effective communication with stakeholders at all levels to promote a culture of security awareness.
IT Languages:
Microsoft Information Security Toolkit
PCI DSS
ISO27001
As the Information Security Manager, you will oversee a variety of tasks aimed at strengthening our information security framework.:
Support the Director of Risk & Compliance in the design and implementation of the ISMS and global strategies.;; Coordinate and manage global IT security requests and audits, including external vulnerability screenings.;; Maintain and update risk registers, ensuring comprehensive management of Information Security risks.;; Facilitate weekly IT security calls and participate in global steering committee meetings.;; Establish and document processes and schemes based on industry standards, and draft security policies and guidelines.;; Report compliance and security metrics to senior management and manage relevant budgets.;; Collaborate with the IT department on security reviews, penetration testing, and assessing vulnerability risks.;; Develop and manage incident response plans and procedures.;; Monitor compliance within Microsoft Azure environments using MS Purview.;; Ensure that IT Security and Data Protection measures are adequate for all suppliers and service providers.
Spoken Languages:
English;; German;; French;; Spanish
Skillset:
Information Security Management System
Risk Management
Audit Management
Incident Response
Compliance Monitoring
Penetration Testing
Soft Skills:
Strong analytical skills
Attention to detail
Excellent communication skills
Service-oriented attitude
Decision-making capabilities
Qualifications:
Bachelor’s degree in Information Security or a related field
Relevant information security certifications
Years of Experience:
5
Location:
Germany
Job Benefits:
Competitive salary
Opportunities for professional growth
Comprehensive health insurance
Flexible working hours
Support for continuous education
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster a culture of collaboration and innovation, where team members are encouraged to share ideas and contribute to the organization's security objectives. Our work environment is inclusive, supportive, and focused on continuous improvement, enabling employees to thrive and advance in their careers.
Opportunities For Advancement:
Leadership roles in information security, Specialized security certifications, Cross-departmental projects, International assignments
We are seeking an experienced Information Security Manager to play a pivotal role in shaping the information security landscape within our organization. This individual will work closely with senior leadership, particularly the Director of Risk & Compliance and the Chief Information Security Officer, to design, implement, and uphold an Information Security Management System (ISMS), ensuring that our systems and processes align with global standards. You will be responsible for coordinating IT security requests, managing audits, maintaining risk registers, and overseeing compliance. Your expertise will guide the establishment of security policies and procedures that protect our data integrity and confidentiality while ensuring we meet industry standards and certification requirements. This role requires a proactive approach to incident response and security reviews, as well as effective communication with stakeholders at all levels to promote a culture of security awareness.
IT Languages:
Microsoft Information Security Toolkit
PCI DSS
ISO27001
As the Information Security Manager, you will oversee a variety of tasks aimed at strengthening our information security framework.:
Support the Director of Risk & Compliance in the design and implementation of the ISMS and global strategies.;; Coordinate and manage global IT security requests and audits, including external vulnerability screenings.;; Maintain and update risk registers, ensuring comprehensive management of Information Security risks.;; Facilitate weekly IT security calls and participate in global steering committee meetings.;; Establish and document processes and schemes based on industry standards, and draft security policies and guidelines.;; Report compliance and security metrics to senior management and manage relevant budgets.;; Collaborate with the IT department on security reviews, penetration testing, and assessing vulnerability risks.;; Develop and manage incident response plans and procedures.;; Monitor compliance within Microsoft Azure environments using MS Purview.;; Ensure that IT Security and Data Protection measures are adequate for all suppliers and service providers.
Spoken Languages:
English;; German;; French;; Spanish
Skillset:
Information Security Management System
Risk Management
Audit Management
Incident Response
Compliance Monitoring
Penetration Testing
Soft Skills:
Strong analytical skills
Attention to detail
Excellent communication skills
Service-oriented attitude
Decision-making capabilities
Qualifications:
Bachelor’s degree in Information Security or a related field
Relevant information security certifications
Years of Experience:
5
Location:
Germany
Job Benefits:
Competitive salary
Opportunities for professional growth
Comprehensive health insurance
Flexible working hours
Support for continuous education
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster a culture of collaboration and innovation, where team members are encouraged to share ideas and contribute to the organization's security objectives. Our work environment is inclusive, supportive, and focused on continuous improvement, enabling employees to thrive and advance in their careers.
Opportunities For Advancement:
Leadership roles in information security, Specialized security certifications, Cross-departmental projects, International assignments
We are seeking a dedicated Software Quality Assurance Analyst to join our dynamic team. In this role, you will play a crucial part in monitoring various programs and projects within the organization to ensure adherence to established practices, policies, processes, and regulations. You will be responsible for reviewing existing policies, standards, and procedures, as well as conducting thorough assessments at the program and project levels. The goal is to report findings, track issues to resolution, and provide actionable recommendations for enhancing quality assurance and quality control activities throughout the project lifecycle. Your expertise will be vital in identifying non-compliance issues and pinpointing opportunities for improvement while ensuring that our deliverables consistently meet the highest standards of quality.
IT Languages:
Agile
SAFe
Scrum
Waterfall
Your primary responsibilities will center around quality assurance activities, ensuring compliance, and improving processes within the organization.:
Develop and create audit checklists for both Agile and Waterfall methodologies.;; Conduct assessments of medium to complex products and projects to ensure compliance with published standards and processes.;; Identify issues in processes and procedures based on audit findings and initiate appropriate resolutions.;; Communicate with internal audit peers and management regarding audit statuses, issues, and deadlines.;; Facilitate training sessions and presentations on process governance and improvement topics.;; Collect and analyze quality-related data to monitor trends and track quality action items.;; Participate in audit processes to ensure deliverables meet compliance and uniformity standards.;; Prepare detailed QA reports and assist in the preparation of presentations for senior management.
Spoken Languages:
English
Skillset:
Quality Assurance
Process Improvement
Audit Management
Agile Methodologies
Project Management
Soft Skills:
Effective communication
Problem-solving
Attention to detail
Ability to work under pressure
Adaptability
Qualifications:
Bachelor’s Degree in Computer Science or related field
5 years of experience in Software Development Life Cycle
In lieu of degree, 4 additional years of relevant experience
Years of Experience:
5
Location:
United States
Job Benefits:
Comprehensive medical benefits
Competitive pay
401(k) retirement plan
Flexible work environment
Career development opportunities
Working Conditions:
Hybrid
Employment Type:
Contract
Company Culture:
We prioritize technology excellence while fostering a culture of collaboration and innovation. Our team is driven by a commitment to quality and client satisfaction, ensuring that we not only meet but exceed expectations. We believe in continuous improvement and value the contributions of each team member, encouraging professional growth and development.
Opportunities For Advancement:
Leadership roles within the QA team, Specialization in advanced quality assurance techniques, Opportunities to lead training and development workshops
We are currently seeking an experienced Information Security Officer to join our IT team and enhance our information technology security framework. In this role, you will play a pivotal part in transforming robust security solutions and concepts into successful project completions. Your passion for evolving IT security strategies against contemporary threats will drive you to conduct comprehensive security analyses, vulnerability assessments, and remediation efforts. You will be responsible for the development of our security strategy, creating frameworks, and advancing relevant security management systems. Additionally, you will serve as our strategic point of contact for all IT and information security-related queries. You will need to identify potential security risks and threats, monitor the implementation and effectiveness of security measures to strengthen our cyber resilience, and evaluate security standards in accordance with BSI. Analyzing IT security incidents and formulating preventive and responsive measures will be crucial to your success. You will support the creation and implementation of security policies and procedures while leading internal and external security audits. Collaborating with external authorities and security specialists as well as participating in relevant security networks will be an integral part of your responsibilities. Furthermore, you will ensure effective collaboration between our IT organization and the Security Operation Center (SOC), the Information Security Officer (ISO), and the Data Protection Officer (DPO). You will also assist in implementing the Business Continuity Management System and contribute to optimizing IT emergency and crisis preparedness to ensure IT service continuity. Advising IT colleagues and management on security matters and conducting training sessions to enhance security awareness among staff will round out your duties.
IT Languages:
ISO 27001
IT Service Continuity Management
As an Information Security Officer, you will be tasked with a variety of responsibilities aimed at enhancing our organization’s information security posture.:
Develop and implement security strategies and management systems.;; Conduct security risk assessments and vulnerability evaluations.;; Monitor and evaluate the effectiveness of security measures.;; Collaborate with external security specialists and authorities.;; Support the creation and implementation of security policies.;; Lead internal and external security audits.;; Facilitate training sessions on IT security awareness.
Spoken Languages:
German;; English
Skillset:
IT Security Standards
Vulnerability Assessment
Incident Analysis
Security Policy Development
Audit Management
Soft Skills:
Excellent communication skills
Strong problem-solving abilities
Conflict resolution skills
High social competence
Team collaboration
Qualifications:
Degree in Information Technology, Business Informatics, or IT Security
Relevant certifications in IT Security
Years of Experience:
5
Location:
Germany
Job Benefits:
Energy subsidy to assist with energy costs
Company pension plan
Remote working options
Professional development opportunities
Flexible working hours
Bike leasing and discounted public transport tickets
Free parking and charging stations for electric vehicles
Attractive compensation with performance bonuses
Health management programs
Team-building events and celebrations
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster a collaborative and inclusive work environment where innovation is encouraged. Our team is committed to not only organizational goals but also to personal development, ensuring that every member feels valued and empowered. We prioritize work-life balance and provide various support systems to enhance employee well-being.
Opportunities For Advancement:
Career growth through training and development, Leadership opportunities in security management, Possibility to take on international projects
Visa Sponsorship:
Available
]]>Chief Information Security Officer
https://whoneedsengineers.com/jobs/cybersecurity/chief-information-security-officer-3/
Mon, 16 Sep 2024 00:15:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/chief-information-security-officer-3/Chief Information Security Officer
Job Description:
We are seeking a highly skilled Chief Information Security Officer (CISO) to lead and enhance our information security strategy in Germany. This pivotal role involves overseeing the security framework and ensuring compliance with legal and regulatory standards. The CISO will coordinate with various subsidiaries and business units to implement security measures that mitigate risks and fortify compliance. You will be responsible for developing training programs to raise awareness about information security, as well as establishing and maintaining comprehensive processes, standards, and guidelines. The successful candidate will prepare detailed risk reports, conduct thorough risk assessments, and provide invaluable support to both business and IT departments regarding security-related challenges. Additionally, you will report significant information security risks to the Risk Committee and the Board, serving as the primary contact for internal and external audits, thereby ensuring the organization’s information security posture remains robust and resilient.
IT Languages:
Information Security Management
Risk Management
Compliance Standards
The Chief Information Security Officer will play a crucial role in the organization’s strategic approach to information security.:
Coordinate and oversee information security initiatives across subsidiaries and business units.;; Develop and implement group-wide projects aimed at minimizing information security risks.;; Establish training and awareness programs to enhance the organization’s information security culture.;; Create and maintain comprehensive processes, standards, and guidelines related to information security.;; Prepare risk assessment reports and perform risk analysis to identify potential vulnerabilities.;; Advise business and IT departments on security-related matters and support relevant projects.;; Report on the status of information security risks to the Risk Committee and Board of Directors.;; Act as the main point of contact for internal and external audits concerning information security.
Spoken Languages:
English;; German
Skillset:
Information Security
Risk Assessment
Regulatory Compliance
Audit Management
Project Management
Soft Skills:
Excellent communication skills
Strong analytical abilities
Problem-solving mindset
Proactive and structured approach
Team player with a positive attitude
Adaptability to change
Qualifications:
Bachelor’s or Master’s degree in Information Technology, Computer Science, Mathematics, Physics, Business Administration, or a related field.
Solid understanding of legal and regulatory requirements related to information security.
Professional certifications such as CISM, CISA, CISSP, CRISC, ISO 27001 Lead Auditor are highly desirable.
Experience with banking processes and compliance requirements, especially BAIT.
Professional background in an audit or consultancy firm or a critical infrastructure company.
Years of Experience:
7
Location:
Frankfurt am Main, Hesse, Germany, EU
Job Benefits:
Flexible working models
Training and development opportunities
International work experience
Contributions toward personal development
Collaborative work environment
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
The organization fosters a dynamic and collaborative work environment that encourages innovation and professional growth. Teamwork, adaptability, and a proactive approach are highly valued within the company culture.
Opportunities For Advancement:
Leadership roles within security management, International assignments, Professional development and certifications