Information Security Manager (gn)

We are looking for you as our new highly motivated Information Security Manager (gn).The position is available immediately at our headquarters in Fulda or fully remote in EU.

• Flexitime and home office days or working fully remote to guarantee a nice work-life balance
• Intensive onboarding, targeted individual trainings, and development opportunities
• An inclusive, respectful, and empathic workplace
• Plenty of areas to provide leadership and initiative
• A high degree of creative decision-making freedom and plenty of room for innovative work
• Short communication channels and well accessible team leaders
• 1on1s focused on helping you grow
• No micromanagement
• Well-established process for submitting ideas via RFCs and a lightweight approval process
• A company that in some teams already scores ‘high-performer’ as per the metrics from the Accelerate book and wants all teams to achieve the same
• Working with all relevant teams within the information security management system scope, besides the R&D department this would be especially our internal IT and Customer Care
• For onsite work: a modern and open working environment with lounges, kicker-table, pool billard table and team events, free soft drinks, coffee, cereals, and fresh fruit
• Additional allowance for gym membership and childcare as well as a free health and fitness app

Actively support and, ideally, lead Proemion cyber-security initiatives such as:

• Security risk evaluation and management
• Oversight of ISMS audits
• Monitoring for possible cybersecurity threats and risks
• Shift-left our software development by reviewing, consulting, and in general offering security advice on activities related to Proemion SaaS, physical products, and infrastructure
• Expansion and acceleration of our Secure Software Development Lifecycle by promoting and where applicable helping implement static code analysis, penetration testing, vulnerability testing (OWASP 10 required), and other relevant techniques
• Compliance with regulations such as ISO27001, GDPR, etc. ISO27001 will be in particular an immediate key area of focus
• Expansion and oversight of Proemion incident management and response
• Preparation and/or evaluation of resources for internal training
• Expansion and continuous incremental improvement of the information security management system documentation
• Handling of third party questionnaires in relation to information security from suppliers and clients

• You have demonstrable professional experience in the field of Information and Cyber Security
• Expertise in security risk evaluation and management
• Fluency in written and spoken English
• Fluency in at least one programming language for automation purposes
• High customer orientation (to internal and external customers)
• You show agency: you take on work without waiting for the conditions to be perfect or blaming others
• You are characterized by curiosity and personal responsibility
• As well as strong teamwork and communication skills
• You live our values: passion, trust, quality

• German language proficiency
• Experience with Information Security Management Systems, ideally ISO27001

We are a fast-growing international industrial tech company at the forefront of the IoT and Telematics revolution with headquarters in Fulda. Outside of Germany, we have offices in the USA and South Korea, as well as numerous colleagues working remotely for us worldwide. Our headcount has more than tripled in the last six years from 60 to over 180 employees. With you, we want to continuously develop the company to the next level.

With us, you can move things forward. There are short decision-making processes and a lot of creative freedom for you. Our corporate culture is characterized by internationality, diversity and agility as well as by a hands-on mentality.

We are interested in you as a person with your skills and talents. We are happy to see you adding to our diversity.

• A modern analytics and visualization platform collecting data from industrial machinery all around the globe
• An API-first product, available 24/7
• Eternal data retention answering long-term and short-term questions for our customers