Information Security Manager mwd

It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for prevent detect and respond to cyber security incidents.

All of this is built on four fundamental values that define who we are: We are Proud We Break Barriers We Care and No BS!

Tasks

You have a strong interest in cyber security and believe the following to be applicable to you

As an Information Security Manager (m/w/d) located in Austria at NVISO you will lead our team of CISOaaS or GRC consultants while actively contributing to client projects as well as contributing in presales activities for strategic clients. Your role will be key in enhancing our clients cybersecurity posture by creating and driving security strategies and their programs throughout the company. Key responsibilities include but are not limited to:

• Leading and managing a team of CISOaaS/GRC consultants to deliver highquality services to clients;
• Collaborating closely with clients to understand their business objectives their risks and their unique security requirements;
• Assessing the security maturity of clients (using of ISO BSI or NIST standards) to identify gaps and areas for improvement;
• Developing and implementing a fitforpurpose security program (that aligns with industry standards);
• Driving the security program at clients where you also act as the security champion spreading the gospel on security;
• Conducting risk assessments identifying potential vulnerabilities and recommending risk mitigation strategies;
• Overseeing and supporting with the implementation of the security program including policies procedures and controls;
• Providing updates to management on the state of security at their company;
• Holding steering committees at the customer with relevant stakeholders to guide & adapt the security program where needed.
• Involve yourself actively in the sales process by creating and presenting Statements of Work project plans requirements definitions for projects running in your team;
• Perform technical account management duties for specific toptier strategic clients.

Requirements

• You are eligible for NATO Clearance.
• Bachelors degree in Business Administration Information Security or a related field;
• Professional certifications such as Certified Information Systems Auditor (CISA) Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) ISO27001 Implementer/Auditor or equivalent are strongly preferred;
• Proven experience in being a CISO and/or having successfully implemented ISO27k or BSI Grundschutz at clients. This covers but not limited to: risk assessment security roadmap creation CISOaaS and policy development;
• Indepth knowledge of relevant industry standards and frameworks such as ISO 27001 DORA NIST NIS2 GDPR etc.;
• Familiarity with risk management methodologies and their application to cybersecurity;
• Quickly grasping the complexity and the business reasons for a company to perform security and adapting your communication style and the security program to make it fit for the client;
• Excellent English and German written and verbal communication skills to effectively convey complex concepts to technical and nontechnical stakeholders;
• Leadership skills to manage a team and collaborate with clients and crossfunctional teams.

Benefits

At NVISO we care. We are committed to offering you a highly competitive remuneration package including financial and nonfinancial components:

• A training budget of 10000 EUR plus 10 days paid time off rolling over two years;
• Working with and learning from the best people in the European cyber security scene. We have several SANS Instructors working for us and we are also represented at popular hacking conferences (BlackHat BruCON OWASP etc.. In addition our employees can take advantage of prestigious continuing education opportunities (GSE GXPN CISSP OSCP etc.;
• A forwardthinking and agile company that supports you in the creation and implementation of new initiatives ;
• Unique team events (most recently e.g. Lisbon Dubai Malta);
• A sophisticated coaching concept starting on day 1;
• 30 days of vacation;
• Flexible working hours and home office options (Working Abroad Option);
• Cost absorption for the Klimaticket;
• Company bike leasing.