Info Security Engineer (f/m/d)

at  Acrolinx

Acrolinx is an AI-powered Editorial Manager. The world’s largest brands, including companies like Microsoft, Apple, Citi, and Volkswagen use Acrolinx to infuse automation across their editorial process, resulting in huge efficiency as measured in time to publication and cost. In addition to efficiency benefits, companies like the ones I mentioned improve overall brand alignment across content, reduce risk associated with problematic content, and increase the business impact of everything they write. Generative AI is helping companies make MORE content, but not better content, resulting in editorial bottlenecks and backlogs, meaning that, while there is real value in the use of GenAI, companies simply can’t realize that value without an automated Editorial Manager like Acrolinx.
Our customers rely on our AI to ensure consistent and high-quality writing on a global scale. Chances are, you’ve read some text today that Acrolinx software helped to shape.
You’ll be an important member of the Information Security team, performing a number of key tasks including maintaining and elevating security across our cloud environments (AWS/Azure) with our technical teams of SRE and IT. As part of the Information Security Team, you’ll work closely with experienced colleagues to maintain and improve our high governance & risk standards and to support our ISO 27001 compliance. If that sounds like you, we’d love to have you join us!
This role is remote, however candidates near our Berlin, Germany HQ can work hybrid.

• You will be one of our central internal contacts for information security
• Function as an information security expert in between internal leads, and in particular towards SRE and IT teams
• Co-design, co-implement, and co-maintain secure systems, including (cloud based) servers, services and infrastructure
• Provide technical expertise and guidance to SRE and IT teams to ensure that security controls are effectively implemented and maintained.
• Perform vulnerability assessments, penetration testing, and (technical) risk assessments to identify and prioritize potential security risks and vulnerabilities
• Develop and implement security measures, policies, and procedures to protect systems and networks against unauthorized access, data breaches, and other security incidents (AWS/Azure cloud account security posture management)
• Manage and improve the SIEM tool and process.
• Monitor and analyze security logs and events, and respond to security incidents within our incident management process
• Collaborate with cross-functional teams to ensure that security requirements are incorporated into system and network design, development, and implementation processes.
• Stay updated on the latest security threats, technologies, and industry trends, and provide recommendations for improving security posture.
• Author, review, and update guidelines, policies, and general documentation.
• Regularly engage with internal stakeholders to perform information gathering and knowledge sharing
• Provide training and awareness programs to educate employees and users about security best practices and procedures.
• Support our continuous compliance initiatives, monitoring, audits, and reviews, including those for our ISO 27001 certification