Information Security Manager – m/f/d
NVISO Security
Cyber Security
Senior Information Security Manager
NVISO Security
full-time
Posted on:
Location Type: Hybrid
Location: Frankfurt • 🇩🇪 Germany
Visit company websiteSalary
💰 €90,000 - €115,000 per year
Job Level
Senior
About the role
- Lead and manage a team of CISOaaS/GRC consultants to deliver high-quality services to clients.
- Work closely with clients to understand their business objectives, risks and specific security requirements.
- Assess clients' security maturity (using ISO, BSI or NIST standards) to identify gaps and opportunities for improvement.
- Develop and implement a tailored security program aligned with industry standards.
- Oversee the security program at client sites, acting as the security owner and promoting security awareness.
- Conduct risk assessments, identify potential vulnerabilities and recommend risk mitigation strategies.
- Support the implementation of the security program, including policies, procedures and controls.
- Provide management updates on the organization’s security posture.
- Facilitate steering committees with relevant stakeholders at the client to guide and adjust the security program as needed.
- Actively participate in the sales process by preparing and presenting statements of work, project plans and requirements definitions for ongoing projects within your team.
- Perform technical tasks in account management for specific top-tier clients.
Requirements
- Eligible for NATO security clearance.
- Bachelor’s degree in Business Administration, Information Security or a related field.
- Professional certifications such as CISA, CISSP, CISM or ISO 27001 Implementer/Auditor (or similar) are strongly preferred.
- Proven experience as a CISO and/or in the successful implementation of ISO27k or BSI IT-Grundschutz for clients.
- Solid knowledge of relevant industry standards and frameworks such as ISO 27001, DORA, NIST, NIS-2, GDPR, etc.
- Familiarity with risk management methodologies and their application to cybersecurity.
- Ability to quickly grasp complexity and the business rationale for security measures, and to adapt your communication style and the security program to meet client needs.
- Excellent written and verbal communication skills in English and German to convey complex concepts to both technical and non-technical stakeholders.
- Leadership skills to manage a team and collaborate with clients and cross-functional teams.
Benefits
- A training and development budget of EUR 10,000 plus 10 paid training days that can be carried over across two years.
- Work and learn from leading professionals in the European cybersecurity scene.
- Several SANS instructors work with us and we are represented at major hacker conferences (BlackHat, BruCON, OWASP, etc.).
- A forward-looking and agile company that supports you in creating and implementing new initiatives.
- Unique team events (recent examples: Lisbon, Dubai, Malta, Lapland).
- A sophisticated coaching concept from day one.
- 30 days of vacation.
- Flexible working hours and remote work options (including the possibility to work from another EU country).
- Reimbursement for the Deutschlandticket and BahnCard50.
- Company bicycle leasing.
- Company pension plan.
- Attractive offices in the heart of Frankfurt and Munich (roof terrace, table tennis, PlayStation, grill).
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
CISOaaSGRCrisk assessmentssecurity program implementationISO 27001BSI IT-GrundschutzNISTGDPRDORANIS-2
Soft skills
leadershipcommunicationcollaborationadaptabilityproblem-solvingstakeholder engagementsecurity awareness promotioncomplexity understandingclient relationship managementpresentation skills
Certifications
CISACISSPCISMISO 27001 ImplementerISO 27001 Auditor
