Назад
Company hidden
2 дня назад

Principal Information Security Manager (SaaS)

Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
c1
Страна
Germany
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Principal Information Security Manager (SaaS): Leading the InfoSec program to make it investor-ready and AI-efficient while maintaining enterprise customer trust with an accent on compliance frameworks and security governance. Focus on scaling audit cycles, automating security operations through AI, and managing high-level customer security reviews.

Location: Hybrid in Berlin, Chemnitz, or Dresden, Germany

Company

An AI-native Employee Experience Platform unicorn that provides inspirational communication tools for large organizations.

What you will do

  • Lead ISO 27001 and SOC 2 audit cycles end-to-end, including preparation, evidence collection, and remediation.
  • Manage responses to enterprise customer security questionnaires and RFPs, representing the company in security reviews.
  • Maintain the risk register and drive risk treatment decisions for critical and high-risk suppliers.
  • Develop and enforce the internal security policy framework and design security awareness programs.
  • Own and execute the incident response plan, coordinating with Engineering, Legal, and leadership during incidents.
  • Implement AI-assisted workflows and tooling to replace manual processes in compliance and operations.

Requirements

  • 5+ years of hands-on InfoSec experience in a SaaS or B2B tech company.
  • Proven ownership of ISO 27001 and/or SOC 2 programs.
  • Track record of managing security reviews and escalations for enterprise customers.
  • Fluency in both German and English is required.
  • Experience utilizing AI-driven tooling to automate compliance and operational tasks.

Nice to have

  • Experience supporting M&A or investor due diligence processes.
  • Practical understanding of cloud security architecture.
  • Relevant certifications such as CISM, CISSP, or ISO 27001 Lead Auditor/Implementer.

Culture & Benefits

  • Competitive salary packages including a unit-based Long Term Incentive Plan (LTIP).
  • Flexible working models with a yearly flex work allowance of €1560.
  • 31 vacation days annually, including fully paid Fridays off during August.
  • Company pension scheme.
  • One dedicated Volunteers Day per year for social projects.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →