Head of Security & Defense (f/d/m)
Location
Düsseldorf | Germany
Job description
Welcome to Vorwerk as Head of Security & Defense (f/d/m)
Vorwerk Engineering‘s vision is to elevate the quality of life everywhere our customers call home. We are up to combine Vorwerk’s long-standing, high-quality engineering experience with agile methodologies, leading edge technologies and whole-hearted dedication to customer satisfaction to strengthen our long-term trustful customer-relationships.
We are looking for an exceptional leader to take on the role of
Head of Security & Defense (f/d/m), which is the
Information Security Officer (ISO) for Vorwerk Elektrowerke. In this key leadership role, you will be responsible for ensuring the security of our digital ecosystems, production lines (OT) as well as our software and hardware R&Ds at Vorwerk Engineering (legal entities in Germany, France, Italy and China). The Head of Security & Defense (f/d/m) shall establish framing conditions which makes security awareness an integral part of the daily routines of our employees with the intention to keep the security of our products and services to a premium quality.
We are a dynamic and internationally successful group. We offer our employees a creative and cooperative working environment and social protection in every stage of life. We promote the compatibility of family life and professional career, with a wide range of benefits that are listed below.
More @
vorwerk.com Responsibilites
- Primary Accountability: a. Head of Security and Defense:
Responsible for defining, implementing, and assessing digital product and service security for all solutions, platforms, and toolings owned by Vorwerk Engineering (including hardware R&D, digital R&D and production lines). The main goal is to ensure that security incidents and data breaches, both potential and actual, do not compromise customer trust and confidence. b. Information Security Officer:
Responsible for implementing and assessing information security aspects for Vorwerk Engineering, in close coordination with the global IS organization. Acts as the local representative within the Global Information Security Organization. The primary goal is to ensure compliance with group-wide policies, regulations (e.g. EU CRA, NIS2), industry standards, and data protection laws (e.g. GDPR etc.). c. Overall Risk Identification, Assessment & Management (including mitigation review) for our Products & Services including Vorwerk Engineering internal Systems. This has to be done in allignment with the CISO organization and Group IT and has to be reported to the Digital Management Team and Board of Vorwerk Engineering.
- Contribute the essential security components to the Digital Product & Service Strategy, aligning with key stakeholders across Digital R&D, Vorwerk Engineering, Group IT, and the Global CISO Organization
- Develop and assess the implementation plan for the strategy, managing workstreams, resource allocation, and targets based on Vorwerk’s Leadership Principles.
- Coordinate advanced threat resilience, detection and response, as well as disaster recovery and vulnerability management practices in all areas of Vorwerk Engineering, emphasizing continuous assessments from both external and internal perspectives.
- Implement initiatives to foster a secure software development lifecyle in collaboration with software engineering and platform teams.
- Promote leading edge security practices, facilitate knowledge sharing across all areas of Vorwerk Engineering, and lead local awareness and training initiatives on information security.
- Identify and assess local risks, conduct gap analyses for information security policies, as well as execute and maintain Vorwerk Engineering's security plan.
- Manage approvals, exceptions, and escalations, initiating and monitoring information security measures and projects based on risk assessments and global initiatives.
- Provide advice on information security issues for colleagues within Vorwerk Engineering.
Requirements
- Proven leadership experience in cyber security and risk management, with track record in a roles such as Software Architect, Team Lead Software Development.
- Practical in-depth knowledge of security and compliance policies as well as standards including their applicability and impact on product development processes (including Software, Hardware and operational technology).
- Demonstrated ability to cultivate a humble leadership mindset and enable developers effectively - "make it simple to do the right thing".
- Previous hands-on experience in software development of cloud-native or embedded systems.
- Proficiency in developing and implementing security policies, guidelines, and work instructions (e.g. Pipeline automations, Penetration Testing, SAST)
- Expertise in incident detection and response, including SIEM tools and advanced threat analytics.
- Thorough understanding of risk assessments, vulnerability identification, and mitigation strategies.
- Track record of promoting security best practices within an organization.
- Budget planning and management skills related to security initiatives.
- Experience in facilitating penetration tests to identify vulnerabilities and weaknesses.
- Ability to identify and implement innovative security solutions and technologies.
- Strategic mindset for brand protection and reputation management.
- Fluent English and good German language skills
Benefits
- Exciting challenges and career prospects in an agile environment
- Flexible working framework with flexitime, flexi-time days and 30 days of holiday
- Mobile working with defined remote work options
- Discounted job ticket and free parking directly at your workplace
- Shared success, lots of fun and lifelong learning
- Benefits of a family-owned company, including employee discounts, subsidies for childcare costs and training support
- Extensive health benefits such as company supplementary health insurance, company medical advice and care, and a wide range of fitness offers
- Attractive pension plan with three building blocks and the option of a working time account
- Subsidised snacks and menus on site
- Charging points for electric cars
#J-18808-Ljbffr
Job tags
Salary
