Nemetschek are one of Germany’s largest software companies and a true pioneer in digital transformation for the architecture, engineering, construction, operations and media industries. With a remarkable growth trajectory — delivering double-digit revenue growth year after year and recently reaching close to €1 billion in annual revenues — Nemetschek stands at the forefront of innovation and business transformation. Our dynamic, global team of over 4,000 experts is driving the shift to SaaS and subscription models, harnessing cutting-edge technologies like AI and digital twins to shape the future of the built environment. If you’re looking to be part of a company that is not only aiming at leading its industry but also transforming how the world designs, builds, and manages the spaces we live and work in, Nemetschek is the place to accelerate your career.
We are looking for an experienced Chief Information Security Officer to lead Nemetschek Group’s information security strategy. This role oversees the ISMS, ensures ISO 27001 compliance, and drives security initiatives across multiple brands.

REQUIREMENTS :

Completed studies with content in information security, business informatics or comparable training
At least 3 years of professional experience in the field of Information Security
Good communication skills in English
The ability to think outside the box of Information Security
Knowledge of relevant security standards and frameworks
Subject-specific certifications are an advantage
Very high integrity and trustworthiness
Motivation to improve our company every day
Willingness to travel about 1x a month

Information Security Management for one or more Nemetschek Brands (depending on Brand size)
Operations of the Nemetschek Information Security Management System (ISMS, based on ISO 27001) for the Brand(s)
Maintenance of the ISO 27001 certification on brand level (Sub-certificates)
Participation in and collaboration with the Information Security Core Community
Collaboration with and contribution to shared security services
Implementation or collaboration in projects to improve group wide or Brand specific Information Security
Close collaboration with other CISOs as well as internal and external experts
Permanent learning on the job
Contribution to the group-wide Information Security Management System (ISMS)
Management and execution of Security Audits (Security Peer Review)
Management of security inquiries from 3rd partes like customers or external auditors