Information Security Manager (GRC) (f/m/d)
At Exasol, the Information Security Manager (GRC) will be responsible for managing the GRC function within the security department. Reporting directly to the Head of Information Security and Data Protection, the InfoSec Manager will be responsible for designing, implementing and driving policies and standards across the organization, identifying information security risks and owning and managing our compliance initiatives.
You will be joining a fast growing, international technology company and be in a driving position for helping implement security best practices across the organization. The team is relatively small which gives you the freedom and responsibility to drive and implement initiatives yourself.
Key responsibilities:
- Working within the Information Security function being responsible for driving our policies and standards across the group
- Executing control assessments to identify security weakness throughout the group
- Enhancing and managing our security risk framework and carrying out risk assessments in line with the business to help them understand their risk positions
- Reporting security risks to relevant stakeholders including up to C-Suite
- Managing and maintaining our external certifications including ISO27001, working closely with our internal and external auditors to identify and remediate findings
- Reviewing and assessing regulatory and legislative matters relating to security. Be a central point of contact for legal security requests/ queries
- Engaging with vendors/ suppliers to assess their compliance against security requirements
- Coordinate our Data privacy requirements, supporting our external DPO and leading on privacy change throughout the organization
Your profile:
- Experience of working within a GRC relevant role (e.g. risk officer, compliance officer)
- Excellent written and communication skills, especially able to translate technical subjects to non-technical audiences
- Experience of working in a small, agile organization and an understanding of the dynamics this plays
- Experience of working in a small, flexible team willing to support on wider activities
- Experience of implementing or managing GRC relevant tools such as Panorays, OneTrust, Eramba, Archer GRC, etc.
- Experience of implementing or auditing ISO standards, ideally as a Lead Implementor/ Auditor for ISO27001
Desirable:
- Experience and/ or knowledge of Data Privacy legislation including GDPR, CCPA
- General security relevant certification such as CISSP, CISM, CISA
- ISO27001 Lead Auditor
- Good speaking and written knowledge of German, B1/ B2 level would be ideal!
We understand that you may not meet all the criteria listed above. However, we’re looking for individuals with the right ethos and drive that can also grow into the role. If you believe you may be this candidate, then please apply now!
Your Benefits:
- Own Your Impact: At Exasol, you are not just a cog in the machine; you will step into immediate ownership of projects, driving them forward with a refreshing level of autonomy.
- Thrive in a Global Team: Join a vibrant, international community where diversity is celebrated, collaboration is key, and feedback fuels growth.
- Learn, Grow, Lead: We are invested in your development! Continuous knowledge-sharing, "Coffee and Learn" sessions, exciting events, and dedicated leadership programs empower you to soar.
- Work on Your Terms: Flexibility is the name of the game! Enjoy adaptable hours, remote options, and "workcations" for the ultimate work-life balance.
- Growth That Goes Beyond the Office: Dive into a comprehensive onboarding experience, fun team events, and a deep commitment to diversity and sustainability. We care about your holistic well-being.
- Rewards that Matter: Monthly home office allowance, volunteering options, floating days, and secure pension plans (location-dependent) prove we value your contributions.
Is this the kind of environment that excites you? Let's talk!
About Exasol:
Exasol is the world’s fastest analytics database, trusted by the world’s most ambitious organizations. Built for speed and flexibility, it can analyze billions of rows in seconds and run high-performance analytics securely – whether in the cloud or on-premises. Need to scale your analytics function? Simple pricing makes it easy. Want to deliver frictionless insights? Automatic self-indexing tunes performance for optimal results. And you don’t have to wait - Exasol fits into any data environment, so you can get started right away.
Exasol – accelerating insights from the world’s data.
Learn more at: www.exasol.com and follow us on social media and Twitter.
Exasol is a proud equal opportunities employer. We are committed to a diverse and inclusive working environment and therefore base all our employment selection decisions, within all aspects of our business, on experience, skill, and integrity. We strongly encourage applicants from all walks to life to apply for our positions, irrespective of age, sex, gender identity, disability, sexual orientation, race, religion, etc.
- Department
- Information & Technology Management
- Locations
- Germany
- Remote status
- Fully Remote
About Exasol
Exasol is the world’s fastest analytics database, trusted by the world’s most ambitious organizations. Built for speed and flexibility, it can analyze billions of rows in seconds and run high-performance analytics securely – whether in the cloud or on-premises. Need to scale your analytics function? Simple pricing makes it easy. Want to deliver frictionless insights? Automatic self-indexing tunes performance for optimal results. And you don’t have to wait - Exasol fits into any data environment, so you can get started right away.
Information Security Manager (GRC) (f/m/d)
Loading application form
Already working at Exasol ?
Let’s recruit together and find your next colleague.