• Location: Germany, Hamburg
  • Salary: Up to £100.000 per annum
  • Technology: AWS Jobs
  • Job Type: Permanent
  • Date Posted: 13th Aug, 2019
  • Reference: JF0820509_1565693557
Information Security Manager OCP, SEO, New Business Hamburg Inhouse € 100,000


This role is the primary coordinator within the group's security team for all aspects of information security in the OSP, SEO and NB business units.

Working closely with a broad range of (OCP, SEO, NB) and the Group, we develop, implement and maintain the security policies and standards for this specific business, as well as monitor and report compliance with these policies. Support and advise the various technology units with detailed technical and procedural knowledge about the safe use of SDLC, DevSecOps, cloud services and containerization.

Manage information security due diligence and audit and monitor internal business units, suppliers, and suppliers, as well as conduct security audits and intrusion and penetration tests.

Create and manage security incident management processes that are aligned with group policies and processes. Supervise incident response and security incident investigation

Help set up internal security awareness and education programs and improve employee behavior to reduce the overall risk to the business

Gain up-to-date knowledge of information security and the changing threat landscape, track new developments in rapidly changing technologies, and build a personal network of information security professionals in other organizations and industries to serve as a source of information

Provide security expertise and contribute to the design and operation of systems, infrastructures, products and processes.


Thorough understanding of the concepts, technologies, systems and architectures that support the protection of information security

Significant experience as an information security specialist in developing / publishing / maintaining controls and policies for complex organizations. Industry-recognized qualifications (CISM, CISSP) would be an asset

Ability to articulate information security and technical issues to non-technical audiences in a non-threatening, clear and actionable manner

Excellent stakeholder management and empowerment combined with the ability to drive change and influence in a highly matrix-managed organization

Passion for technology and security with the desire to deliver

Analytical mind able to manage multiple sources of information and provide data analysis reports to senior management

Highly effective and creative problem solving skills

Language skills: fluent English (must), language skills in German or Polish (desirable)