Information Security Manager

Description
We are looking for you as our new highly motivated Information Security Manager (gn).The position is available immediately at our headquarters in Fulda or fully remote in EU.

In return, we offer you
Flexitime and home office days or working fully remote to guarantee a nice work-life balance
Intensive onboarding, targeted individual trainings, and development opportunities
An inclusive, respectful, and empathic workplace
Plenty of areas to provide leadership and initiative
A high degree of creative decision-making freedom and plenty of room for innovative work
Short communication channels and well accessible team leaders
1on1s focused on helping you grow
No micromanagement
Well-established process for submitting ideas via RFCs and a lightweight approval process
A company that in some teams already scores ‘high-performer’ as per the metrics from the Accelerate book and wants all teams to achieve the same
Working with all relevant teams within the information security management system scope, besides the R&D department this would be especially our internal IT and Customer Care
For onsite work: a modern and open working environment with lounges, kicker-table, pool billard table and team events, free soft drinks, coffee, cereals, and fresh fruit
Additional allowance for gym membership and childcare as well as a free health and fitness app
Your Role
Actively support and, ideally, lead Proemion cyber-security initiatives such as:

Security risk evaluation and management
Oversight of ISMS audits
Monitoring for possible cybersecurity threats and risks
Shift-left our software development by reviewing, consulting, and in general offering security advice on activities related to Proemion SaaS, physical products, and infrastructure
Expansion and acceleration of our Secure Software Development Lifecycle by promoting and where applicable helping implement static code analysis, penetration testing, vulnerability testing (OWASP 10 required), and other relevant techniques
Compliance with regulations such as ISO27001, GDPR, etc. ISO27001 will be in particular an immediate key area of focus
Expansion and oversight of Proemion incident management and response
Preparation and/or evaluation of resources for internal training
Expansion and continuous incremental improvement of the information security management system documentation
Handling of third party questionnaires in relation to information security from suppliers and clients
Your Skills
Required:
You have demonstrable professional experience in the field of Information and Cyber Security
Expertise in security risk evaluation and management
Fluency in written and spoken English
Fluency in at least one programming language for automation purposes
High customer orientation (to internal and external customers)
You show agency: you take on work without waiting for the conditions to be perfect or blaming others
You are characterized by curiosity and personal responsibility
As well as strong teamwork and communication skills
You live our values: passion, trust, quality
Desired:
German language proficiency
Experience with Information Security Management Systems, ideally ISO27001
About Proemion
We are a fast-growing international industrial tech company at the forefront of the IoT and Telematics revolution with headquarters in Fulda. Outside of Germany, we have offices in the USA and South Korea, as well as numerous colleagues working remotely for us worldwide. Our headcount has more than tripled in the last six years from 60 to over 180 employees. With you, we want to continuously develop the company to the next level.

With us, you can move things forward. There are short decision-making processes and a lot of creative freedom for you. Our corporate culture is characterized by internationality, diversity and agility as well as by a hands-on mentality.

We are interested in you as a person with your skills and talents. We are happy to see you adding to our diversity.

What we build
A modern analytics and visualization platform collecting data from industrial machinery all around the globe
An API-first product, available 24/7
Eternal data retention answering long-term and short-term questions for our customers