Beschreibung
AufgabenThe project focuses on supporting the Corporate IT, Multi-Regional Security Managers plan and implement various international data and IT security and compliance programs focused Deutschland and on the region Europe. Examples include PCI DSS, security metrics, value-add program offerings to subsidiaries, compliance/technical assessments, target/KPI tracking, ROSI (Return on Security Investment) business case development, and writing communications to "C" level audiences. This should be considered a long term project.
• Ensure the implementation of international security programs and alignment with regional
subsidiaries and internal stakeholders
• Closely coordinate with multiple internal and international security departments
• Research new industry best practices, including legal, privacy & security regulatory
requirements.
• Write regular top-management suitable reports on overall program progress and progress
of each participating unit
• Support developing requirements on various technical projects which are part of roadmap
and strategic initiatives of Corporate IT Data and IT Security
• Supporting design and integration of complex security architectures and solutions
• Recommendation and review of security products and technologies (IAM, PKI, IDS etc.)
• Directly develop measures aimed at the enhancement of security level within Europe
Skills
• Experience in dealing with current IT security and compliance challenges and solutions
regarding applications, networks, telecommunications, and other current and relevant
issues within the IT security and compliance industry.
• Experience in design and implementation of international and national security concepts,
both on organizational and technical level
• Familiarity with program/project management and wide international experience in this
context
• Risk management experience
• Experience in the design and implementation of security architectures, as well as
assessment and verification of various security aspects affecting IT systems
• Advanced communication skills with PowerPoint
• Very good knowledge of information security technologies and tools
• Experience with working and/or building an information security management system (e.g.
based on ISO 2700x)
• MSc. or BSc. in IT and/or business or equivalent preferable CISM, CISA, CISSP or similar
information security certification preferable
• General IT sector, IT governance (e.g. Cobit) and/or service management (e.g. ITIL)
experience beneficial
• Business level skills in English, both written and spoken are a basic requirement.
• Knowledge of second European language is very beneficial.