- ISMS Implementation & Continuous Improvement: Own the local ISMS lifecycle across all German, ensuring compliance with ISO 27001 and BSI IT-Grundschutz while adapting Indra Group corporate security policies and guidelines to the German regulatory and operational environment.
- Risk & Asset Management: Conduct and maintain systematic information security risk assessments and asset inventories, define risk treatment plans, and track their execution in coordination with business owners and IT teams.
- Policy & Process Development: Review, develop, and maintain local information security policies, standards, and procedures in collaboration with relevant stakeholders, ensuring alignment with both Group directives and German legal and regulatory requirements.
- Cybersecurity Advisory for IT & Projects: Provide hands-on security guidance to IT infrastructure, network, cloud (SaaS & IaaS), and project teams for new implementations, architectural changes, and technology initiatives, ensuring security-by-design principles are applied.
- International Coordination & Reporting: Act as the primary information security interface between German operations and the Group CISO as well as international LISOs across geographies and markets, contributing to group-wide security initiatives and reporting.
- Awareness & Stakeholder Engagement: Drive information security awareness and training across all German locations and foster a security-conscious culture at all organizational levels.
Local Information Security Officer (m/w/d)
Köln, Remote
Full-time
Permanent employee
Your mission
Your profile
- Degree in computer science, cybersecurity, information security, or comparable theoretical knowledge• Proven professional experience in information security management, including hands-on ISMS implementation and operation
- Strong working knowledge of ISO/IEC 27001 and BSI IT-Grundschutz frameworks
- Solid cybersecurity background spanning IT infrastructure, network security, and cloud environments (SaaS & IaaS)
- Experience in information security risk management and asset management methodologies
- Strong stakeholder management skills with experience interfacing between local operations and international headquarters
- Fluency in German and English (Spanish proficiency is advantageous)
Why us?
- Flexitime without core working time
- 30 days holiday
- Good work-life balance due to mobile working and workation
- Working in international teams
- Individual training programmes
- Possibility to use Jobrad / Wellpass / Deutschlandticket / Edenred City Card and corporate benefits
About us
Indra Group (www.indragroup.com) is one of the leading European companies that focuses on advanced technologies, with over 60,000 professionals, presence in 46 countries, and commercial operations in more than 140 markets. Indra Group is paving the way to a more secure and better-connected future through innovative solutions, trusted relationships and the very best talent.
Indra Germany delivers secure and efficient solutions in Air Traffic Management, Defence, and Space. From aeronautical information systems to mission-critical defence operations and satellite communications, our technology supports complex, high-stakes environments.
For more information, visit https://www.indragroup.com/en/europe/germany
Indra Germany delivers secure and efficient solutions in Air Traffic Management, Defence, and Space. From aeronautical information systems to mission-critical defence operations and satellite communications, our technology supports complex, high-stakes environments.
For more information, visit https://www.indragroup.com/en/europe/germany