ISO 27001 – Who Needs Engineers
https://whoneedsengineers.com/wne_live
Software Engineering RecruitmentSun, 27 Oct 2024 12:00:02 +0000en-US
hourly
1 https://wordpress.org/?v=6.6.2https://whoneedsengineers.com/wne_live/wp-content/uploads/2023/06/cropped-wne_logo-3-32x32.pngISO 27001 – Who Needs Engineers
https://whoneedsengineers.com/wne_live
3232Vice President, Chief Information Security Officer
https://whoneedsengineers.com/jobs/cybersecurity/vice-president-chief-information-security-officer-2/
Sun, 27 Oct 2024 12:00:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/vice-president-chief-information-security-officer-2/Vice President, Chief Information Security Officer
Job Description:
We are seeking a dynamic and experienced Chief Information Security Officer (CISO) to lead our information security initiatives. The CISO will be responsible for defining and implementing a comprehensive information security strategy that aligns with our business objectives while ensuring the protection of our critical information assets. This pivotal role requires collaboration with executive management to assess the organization's risk tolerance, transforming security measures into a business enabler. As the CISO, you will oversee the security organization, ensuring the effectiveness of security controls and fostering continuous improvement through the assessment of emerging technologies. Your leadership will be key in cultivating a culture of security awareness across the organization, empowering employees through training and engagement initiatives. You will spearhead security incident management, ensuring effective communication and recovery processes while conducting regular assessments to maintain compliance with regulatory standards. This position offers a unique opportunity to shape the future of information security within our organization and contribute to the broader mission of innovation and technological advancement.
IT Languages:
Java
Python
C++
SQL
The Chief Information Security Officer will undertake the following responsibilities::
Define and implement a forward-thinking information security strategy aligned with business goals.;; Oversee the information security organization, focusing on security controls and continuous improvement.;; Collaborate with various stakeholders to identify security risks and develop mitigation strategies.;; Promote and maintain information security policies, standards, and procedures.;; Stay updated on emerging threats and industry trends to enhance the security posture.;; Manage security incidents, ensuring effective containment and communication.;; Conduct regular security assessments for compliance with regulations and customer requirements.;; Provide updates and reports to executive leadership and the board on security initiatives.;; Foster a culture of security awareness through training and engagement activities.;; Build and mentor a high-performing team of security professionals.
Spoken Languages:
English;; Spanish;; French
Skillset:
NIST Cybersecurity Framework
ISO 27001
Risk management
Incident response
Security assessments
Soft Skills:
Exceptional communication skills
Strong interpersonal skills
Critical thinking
Problem-solving
Ability to perform under pressure
Qualifications:
Bachelor’s degree in Computer Science, Cybersecurity, or related fields
Advanced degree preferred
Extensive experience in information security leadership within large enterprises
Deep understanding of cybersecurity principles and frameworks
Years of Experience:
10
Location:
United States
Job Benefits:
Paid vacation and sick leave
Medical, dental, and vision insurance
Life and disability insurance
Flexible spending and health savings accounts
Employee assistance programs
Tuition reimbursement
Employee stock purchase plan
401(k) plan with company match
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster an inclusive and diverse environment where innovation thrives. Our culture is built on collaboration, respect, and the pursuit of excellence. We believe that the fusion of various perspectives leads to the best outcomes for our employees and the communities we serve.
Opportunities For Advancement:
Leadership training programs, Mentorship opportunities, Access to industry conferences, Career development workshops
Visa Sponsorship:
Available
]]>Vice President, Chief Information Security Officer
https://whoneedsengineers.com/jobs/cybersecurity/vice-president-chief-information-security-officer/
Mon, 21 Oct 2024 08:00:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/vice-president-chief-information-security-officer/Vice President, Chief Information Security Officer
Job Description:
We are seeking a dynamic and experienced Chief Information Security Officer (CISO) to lead our information security initiatives. The CISO will be responsible for defining and implementing a comprehensive information security strategy that aligns with our business objectives while ensuring the protection of our critical information assets. This pivotal role requires collaboration with executive management to assess the organization's risk tolerance, transforming security measures into a business enabler. As the CISO, you will oversee the security organization, ensuring the effectiveness of security controls and fostering continuous improvement through the assessment of emerging technologies. Your leadership will be key in cultivating a culture of security awareness across the organization, empowering employees through training and engagement initiatives. You will spearhead security incident management, ensuring effective communication and recovery processes while conducting regular assessments to maintain compliance with regulatory standards. This position offers a unique opportunity to shape the future of information security within our organization and contribute to the broader mission of innovation and technological advancement.
IT Languages:
Java
Python
C++
SQL
The Chief Information Security Officer will undertake the following responsibilities::
Define and implement a forward-thinking information security strategy aligned with business goals.;; Oversee the information security organization, focusing on security controls and continuous improvement.;; Collaborate with various stakeholders to identify security risks and develop mitigation strategies.;; Promote and maintain information security policies, standards, and procedures.;; Stay updated on emerging threats and industry trends to enhance the security posture.;; Manage security incidents, ensuring effective containment and communication.;; Conduct regular security assessments for compliance with regulations and customer requirements.;; Provide updates and reports to executive leadership and the board on security initiatives.;; Foster a culture of security awareness through training and engagement activities.;; Build and mentor a high-performing team of security professionals.
Spoken Languages:
English;; Spanish;; French
Skillset:
NIST Cybersecurity Framework
ISO 27001
Risk management
Incident response
Security assessments
Soft Skills:
Exceptional communication skills
Strong interpersonal skills
Critical thinking
Problem-solving
Ability to perform under pressure
Qualifications:
Bachelor’s degree in Computer Science, Cybersecurity, or related fields
Advanced degree preferred
Extensive experience in information security leadership within large enterprises
Deep understanding of cybersecurity principles and frameworks
Years of Experience:
10
Location:
United States
Job Benefits:
Paid vacation and sick leave
Medical, dental, and vision insurance
Life and disability insurance
Flexible spending and health savings accounts
Employee assistance programs
Tuition reimbursement
Employee stock purchase plan
401(k) plan with company match
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster an inclusive and diverse environment where innovation thrives. Our culture is built on collaboration, respect, and the pursuit of excellence. We believe that the fusion of various perspectives leads to the best outcomes for our employees and the communities we serve.
Opportunities For Advancement:
Leadership training programs, Mentorship opportunities, Access to industry conferences, Career development workshops
We are seeking an IT Security Engineer to join our dynamic team at a rapidly expanding startup focused on providing secure trading platforms for digital assets. The successful candidate will design, implement, and monitor security measures for our cloud infrastructure, ensuring the integrity and confidentiality of our trading operations. You will conduct vulnerability assessments and lead penetration testing efforts, actively identifying and mitigating security risks. A key part of your role will involve developing and enforcing security policies and guidelines, as well as educating staff on best practices to foster a security-aware culture. You will collaborate closely with development and DevOps teams, advising them on security aspects throughout the architectural design process, and perform regular security testing on our applications. This position offers an exciting opportunity to work at the intersection of finance and technology within a modern and innovative environment.
IT Languages:
Python
Java
SQL
As an IT Security Engineer, you will be responsible for a wide range of security-related tasks that are crucial to maintaining the integrity and security of our digital asset trading platform.:
Design and implement robust security solutions for our cloud environment;; Conduct thorough vulnerability assessments and lead penetration testing initiatives;; Monitor system security continuously and track vulnerabilities effectively;; Develop and implement comprehensive security policies and procedures;; Educate and train staff on security best practices and awareness;; Advise development and DevOps teams on security considerations in architectural designs;; Perform regular security testing on existing applications using tools like BurpSuite
Spoken Languages:
English;; German
Skillset:
Firewalls
IDS/IPS
SIEM
ISO 27001
GDPR
Incident response
Forensic analysis
AWS
Azure
Network security protocols
Encryption technologies
Soft Skills:
Team spirit
High level of commitment
Initiative
Qualifications:
Hands-on experience with security technologies such as firewalls, IDS/IPS, and SIEM solutions
In-depth knowledge of cybersecurity frameworks including ISO 27001 and GDPR compliance
Proficient in incident response and forensic analysis
Familiarity with cloud security practices and tools such as AWS, Azure, or Google Cloud
Experience with network security protocols and secure network design
Strong understanding of encryption technologies and secure data transmission methods
Enthusiasm for digital assets and initial experience in this area is preferred
Years of Experience:
3
Location:
Germany
Job Benefits:
Work with experts from the digital assets and crypto industry
Flat hierarchies
Flexible working hours with home office options
International and modern working environment
Strongly motivated and dynamic team
High degree of self-reliance and responsibility
30 days vacation per year
Attractive compensation package
Team and company events
Modern office located in the heart of Frankfurt’s financial center
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
Our company culture embraces innovation, collaboration, and a commitment to excellence. We foster an environment where team members can thrive and grow, encouraging open communication and the sharing of ideas. We value diversity and inclusion, ensuring that all voices are heard and respected.
Opportunities For Advancement:
Career growth and development opportunities, Access to training and professional development resources, Potential for leadership roles in future projects
Visa Sponsorship:
Available
]]>Information Security and Data Privacy Manager
https://whoneedsengineers.com/jobs/cybersecurity/information-security-and-data-privacy-manager/
Tue, 08 Oct 2024 22:25:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/information-security-and-data-privacy-manager/Information Security and Data Privacy Manager
Job Description:
We are seeking a knowledgeable and experienced Information Security and Data Privacy Manager to join our team in Essen. This role is pivotal in developing and implementing robust information security and data protection strategies that not only meet industry standards but also reflect best practices. You will play a critical role in identifying potential security risks, conducting thorough Data Protection Impact Assessments (DPIAs), and performing vulnerability analyses to prioritize and mitigate risks effectively. Your expertise will be essential in responding to security incidents and data breaches according to our established protocols, while also supporting our central Computer Emergency Response Team (CERT) during post-incident analyses and reporting. You will ensure compliance with applicable laws and regulations concerning information security and data protection, conduct regular audits, and prepare compliance reports. Continuous improvement of our Information Security Management System (ISMS) will be a key focus for you, as will the delivery of training programs to enhance security awareness among staff. Collaboration with various teams, including IT, legal, and compliance, is crucial to ensure cohesive strategies across our organization.
IT Languages:
Python
Java
SQL
As the Information Security and Data Privacy Manager, your responsibilities will include::
Implementing comprehensive information security and data protection strategies;; Identifying, assessing, and prioritizing security risks;; Conducting regular DPIAs and vulnerability analyses;; Responding to security incidents and data breaches;; Ensuring compliance with relevant laws and regulations;; Supporting and conducting regular audits;; Developing and delivering security awareness training;; Collaborating with security architects on protective technologies;; Monitoring security alerts and compliance in real-time;; Acting as the liaison with data protection authorities and external auditors
Spoken Languages:
English;; German
Skillset:
Firewalls
IDS/IPS
SIEM
Encryption
NIST
ISO 27001
Soft Skills:
Analytical thinking
Problem-solving
Excellent communication
Interpersonal skills
Confidentiality
Qualifications:
Bachelor’s or Master’s degree in Information Security, Computer Science, Information Technology, Law, or a related field
In-depth understanding of information security principles and data protection laws
Years of Experience:
5
Location:
Germany
Job Benefits:
Hybrid work model with flexible working hours
Up to 20 days of remote work in the European economic area
Support for lifelong learning and professional growth
Family service support including childcare and nursing assistance
Healthy workplace with subsidized meals and health programs
Employee share program and pension scheme
Subsidized mobility options like private car leasing and DeutschlandTicket
Working Conditions:
Hybrid
Employment Type:
Permanent Contract
Company Culture:
We foster an inclusive and diverse company culture where every individual is valued. We believe in the strength of diverse perspectives and encourage collaboration and innovation among our team members.
Opportunities For Advancement:
Professional development opportunities, Access to state-of-the-art technology and trainings, Career advancement within a large organization
Are you looking to make a significant impact in your career? Join us in improving healthcare outcomes worldwide while developing your skills in a dynamic global environment. We are on the cutting edge of technology and are seeking a talented Operational Technology (OT) Security Specialist. In this pivotal role, you will lead our global OT/IT improvement initiatives, ensuring compliance with the NIS2 Directive across all our factory and distribution sites. Your expertise will be essential in establishing and enhancing risk-based OT IT policies and processes to mitigate vulnerabilities while fostering a culture of security. You will collaborate closely with various stakeholders, including factory managers and IT directors, to ensure that risks are well understood and effectively managed. You will also play a key role in training personnel on OT IT policies and procedures.
IT Languages:
English
German
In this role, you will be responsible for leading efforts to enhance our OT IT security posture, ensuring compliance and effective risk management across all platforms.:
Lead the implementation of the global OT IT improvement program;; Ensure compliance with the NIS2 Directive in all operational facilities;; Develop risk-based OT IT policies and procedures;; Establish a robust risk management structure for OT IT;; Conduct training sessions for key personnel on risk and vulnerability management;; Act as a subject matter expert in OT IT, providing advisory support;; Collaborate with various stakeholders to address and mitigate OT IT risks
Spoken Languages:
English
Skillset:
ISO 27001
NIST Cybersecurity Framework
ISA/IEC 62443
Risk Management
Security Incident Response
Soft Skills:
Strong communication skills
Team collaboration
Critical thinking
Problem-solving
Adaptability
Qualifications:
Master’s degree in IT or a related field
Deep understanding of IT security frameworks
Experience in operational technology environments
Years of Experience:
5
Location:
Gothenburg, Västra Götaland County, Sweden, EU
Job Benefits:
Attractive salary package with annual bonus
Comprehensive health insurance
Pension plan
Wellness contribution
Flexible working hours
Work from home options
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We value diversity and inclusion, fostering an environment where every employee feels a sense of belonging. Our culture encourages innovation, creativity, and collaboration, ensuring that diverse perspectives drive our success.
Opportunities For Advancement:
Career development programs, Opportunities to work on global projects, Access to advanced training and certifications
We are seeking a highly skilled IT Security Consultant to join our team and play a vital role in enhancing our security posture and protecting our valuable information assets. In this position, you will be tasked with implementing and managing comprehensive security measures designed to safeguard sensitive data while ensuring compliance with established industry standards. Your expertise will be instrumental in assessing current security practices, identifying vulnerabilities within systems and applications, and developing tailored security policies and procedures aimed at mitigating potential risks. You will conduct thorough security audits and assessments, provide expert advice on cybersecurity best practices, and collaborate with cross-functional teams to seamlessly integrate security measures into existing IT processes. Staying informed about the latest security trends, threats, and technologies will be crucial to your success in this role.
IT Languages:
Python
Java
C++
As an IT Security Consultant, your main responsibilities will include the following tasks::
Assessing current security practices and identifying vulnerabilities in systems and applications;; Developing and implementing security policies, procedures, and protocols to mitigate risks;; Conducting security audits and assessments to ensure compliance with regulations and standards;; Providing expert advice and recommendations on cybersecurity best practices and solutions;; Coordinating with cross-functional teams to integrate security measures into existing IT processes;; Monitoring security alerts and initiating response protocols to mitigate threats;; Conducting training sessions for employees on security awareness and best practices;; Staying updated with the latest security trends, threats, and technologies
Spoken Languages:
English;; Swedish
Skillset:
ISO 27001
NIST
firewalls
IDS/IPS
encryption
Soft Skills:
Analytical thinking
Problem-solving
Strong communication skills
Interpersonal skills
Proactive mindset
Qualifications:
Bachelor’s degree in Information Technology, Cybersecurity, or a related field
Proven experience in IT security consulting or a related role
Strong understanding of security frameworks and compliance standards
Years of Experience:
5
Location:
Örebro, Örebro County, Sweden, EU
Job Benefits:
Flexible working hours
Professional development opportunities
Health and wellness programs
Remote work options
Collaborative work environment
Working Conditions:
Hybrid
Employment Type:
Permanent Contract
Company Culture:
We foster a culture of innovation, collaboration, and continuous improvement. Our team values openness and encourages professional growth while maintaining a strong commitment to cybersecurity excellence.
Opportunities For Advancement:
Leadership roles in cybersecurity, Specialized training and certifications, Participation in industry conferences and workshops
We are seeking a skilled Information Security Manager to oversee our Information Security Management System (ISMS). This role is pivotal in ensuring the security and integrity of our information assets. You will be tasked with implementing, maintaining, and documenting the ISMS while coordinating certifications such as ISO27001, BSI, and TISAX. Your expertise will also be required in preparing detailed Information Security reports and maintaining effective communication with the ISO. Furthermore, you will play a crucial role in training non-technical staff on Information Security best practices, ensuring compliance and raising awareness throughout the organization.
IT Languages:
ISO 27001
BSI
DORA
TISAX
The responsibilities of the Information Security Manager are both extensive and critical to the organization’s success.:
Implement and maintain the Information Security Management System (ISMS).;; Coordinate and expand certifications such as ISO27001, BSI, and TISAX.;; Prepare and present Information Security reports to stakeholders.;; Maintain ongoing communication with the ISO to ensure compliance.;; Support training initiatives for non-technical employees regarding Information Security.
Spoken Languages:
English;; German
Skillset:
ISMS
ISO 27001
BSI
TISAX
CISSP
CEH
Soft Skills:
Strong communication skills
Team player
Analytical thinking
Attention to detail
Problem-solving abilities
Qualifications:
Extensive experience in ISMS or related Information Security roles.
Proficient in ISO 27001, BSI, DORA, and TISAX frameworks.
C1 proficiency in German.
Proven managerial experience.
Years of Experience:
7
Location:
North Rhine-Westphalia, Germany, EU
Job Benefits:
Above industry average salary of €110k.
Investment in your training and certifications.
Hybrid working model for better work-life balance.
Collaborative team environment.
Opportunities for personal and professional growth.
Working Conditions:
Hybrid
Employment Type:
Permanent Contract
Company Culture:
The company promotes a collaborative and ethical work environment where employees are valued and supported in their professional development. There is a strong emphasis on continuous learning and innovation.
Opportunities For Advancement:
Possibility for career advancement within the cybersecurity domain., Access to continuous professional development programs., Opportunities to lead larger projects in the future.
We are seeking a dynamic and motivated Senior Cybersecurity Advisor to strengthen our Advisory Team. This role is ideal for talented individuals with a university degree and up to five years of professional experience in the cybersecurity industry or consulting. As an advisor, you will engage in strategically significant advisory projects at the management level for top-tier companies across DACH and Europe. Your contributions will include participation in proprietary events and collaborative work with our research team, enriching your experience and expertise.
IT Languages:
Python
Java
C++
SQL
You will play an integral role in a variety of advisory projects for our esteemed clients, both remotely and on-site. Your responsibilities will also include creating content such as blog posts and other media focused on cybersecurity, IAM, and digital transformation, as well as presenting at corporate conferences and webinars. You will be expected to establish thought leadership within your area of expertise.:
Manage and contribute to advisory projects;; Develop engaging content on cybersecurity topics;; Deliver presentations at conferences and webinars;; Establish thought leadership in cybersecurity
Spoken Languages:
German;; English
Skillset:
Identity and Access Management
Cloud Security
Cryptography
Vulnerability Management
Zero Trust Architecture
Business Continuity Management
Risk Management
NIST Framework
ISO 27001
Soft Skills:
Strong analytical skills
Excellent communication abilities
Team-oriented mindset
Problem-solving attitude
Qualifications:
Completed degree in (Business) Informatics or a related field with IT focus
Solid understanding of information security domains such as Identity and Access Management, Cloud Security, Authentication, or Cryptography
Years of Experience:
5
Location:
Europe
Job Benefits:
Attractive base salary
Financial benefits
Bonus program
Modern work environment
High-quality equipment
Visibility through reports and publications
Individual support for personal and professional development
Friendly and diverse workplace
Flat hierarchies
Company bike program
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
The company fosters a supportive and innovative environment where collaboration and diversity are valued. Employees are encouraged to engage in continuous personal and professional development while working on cutting-edge projects.
Opportunities For Advancement:
Career growth in a global company, Opportunities to lead projects, Exposure to advanced technologies