Senior Information Security Manager (f/m/d)

Who we are

We are real.digital: Several thousand merchants and millions of products make our multi-channel portal one of the largest marketplaces in Germany. Our work is characterised by a dynamic corporate culture, with a start-up mentality and the opportunities offered by a large corporation in the background. We combine knowledge and many years of experience in e-commerce with flat hierarchies and a highly motivated team. Whether as an intern or an executive: We take every idea seriously, because we want to work together in shaping the future of e-commerce!

We are a  Remote First Company  ! That means you decide whether you want to work in our office in the heart of Cologne // in our modern loft office in the heart of Darmstadt // in our modern office in the Rhine metropolis Düsseldorf, in your home office or at any other location. We want to offer you the most attractive workplace in e-commerce and a maximum of flexibility for your personal work-life balance.

Day-by-day, our development team of about 150 experts pursues the goal of creating the best-possible customer shopping experience for the real.de marketplace. We are here to inspire millions of customers, to help them find, purchase and get the things they love. To enrich the lives of our customers, we collaborate in cross-functional teams, in which product owners, product designers, frontend and backend engineers, data scientists and lean managers join forces. Details regarding the challenges of the respective product areas can be found here:  https://www.real-digital.de/team/tech/. 

Your tasks – this is what awaits you in detail

• You take ownership for the further development of our company-wide information security management system (ISMS) based on BAIT, MaRisk, ISO 27001
• You develop and implement technical as well as organizational security processes and optimize them for the company standards of real.digital
• You use your technical knowledge and experience to create security concepts and develop appropriate security measures
• You advise our business units in day-to-day business, as well as in implementing and adhering to our policies and standards, as well as current best practices in information security (incl. training activities)
• You have a strong understanding of how to identify technical or organizational risks and vast experience in evaluating these risks
• You prepare and coordinate internal & external audits and the tracking of deficiencies and take over ownership of all IT-Governance topics, e.g. consideration of external requirements (e.g. data protection, PCI DSS)

Your profile – this is what we expect from you

• You have previous working experience in the field of security and risk assessment as well as in dealing with compliance aspects (creating policies and processes, evaluating risks)
• You possess a very good knowledge of information security and standards (e.g. BAIT, ISO 2700x)
• You have ideally obtained certifications such as CISM, CISSP, CISA, T.I.S.P. or related
• You have a very high capacity for abstraction, strong methodical skills and your actions are always based on partnership
• You possess strong negotiation skills and are experienced in dealing with a wide range stakeholders and areas of the company
• Your way of working is results-oriented, binding appearance and presentation strength
• You have the drive to continuously develop both yourself and your colleagues further in order to become a little bit better every day

What we offer

• Remote first: You decide, if you prefer to work from the office or from home

• A highly-motivated and qualified team from different fields and numerous nations

• A sophisticated product with millions of users and a broadly-based technology stack

• A dynamic environment with a start-up mentality, no superfluous red tape and hierarchy, as well as plenty of courage and trust to break new ground

• Free choice of hardware – we provide you with the development environment of your choice

• Always up-to-date – you receive four days of special leave and a budget of €1,300 per year to attend relevant fairs and conferences

• Top conditions at the Urban Sports Club for fitness, team sports, yoga and more