Information Security Officer (ISO 27001) | Information Security Officer (m/w/d) – ISO27001
AfB gemeinnützige GmbH
Job Summary
This critical role involves developing, implementing, and monitoring the company's comprehensive security strategy and measures, including emergency planning, at the Ettlingen location. The Information Security Officer is primarily responsible for establishing, maintaining, and continuously developing the Information Security Management System (ISMS) in accordance with ISO/IEC 27001 or comparable standards. Key daily tasks include creating, updating, and maintaining all ISMS documentation (policies, processes), ensuring strict compliance with legal and regulatory frameworks such as NIS2, CRA, and GDPR. Furthermore, the role requires planning and executing regular security audits, vulnerability analyses, and penetration tests, alongside managing follow-up measures and coordinating external security consultants and authorities. This position offers an unlimited contract, flexible working options (full or part-time, minimum 25 hours/week), and the opportunity to work within a leading European inclusion and sustainability-focused IT organization.
Required Skills
Education
Completed vocational training with relevant further education, or a degree in Business Informatics or comparable IT qualification.
Experience
- Experience in building and developing Information Security Management Systems (ISMS) according to ISO 27001 or BSI IT-Grundschutz
- Experience in Data Protection, IT Governance, IT Compliance, and IT Risk Management (advantageous)
Languages
Additional
- Work location in Ettlingen; Minimum commitment of 25 hours per week (part-time or full-time).