ISMS Manager at ISCC System GmbH

Cologne, North Rhine-Westphalia, Germany -

Full Time

Start Date

Immediate

Expiry Date

06 Sep, 26

Salary

60000.0

Posted On

08 Jun, 26

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

ISMS Management, ISO/IEC 27001, PDCA Cycle, Risk Management, IT Governance, Compliance, Cloud Security, Internal Auditing, Information Security Controls, Data Protection, German Language, English Language

Industry

Environmental Services

Description

Your tasks ISCC – International Sustainability and Carbon Certification is one of the leading certification systems for sustainability, traceability and the reduction of greenhouse gas emissions. Our activities and impact are expanding and our teams are growing exponentially since the last 3 years. We are currently strengthening our Information Security function and are looking forward to welcoming you as our new ISMS Manager at our ISCC headquarters in Cologne. If you are passionate about sustainability and would like to join a culturally certified Great Place to Work® company with highly motivated and diverse teams making a real difference, we look forward to your application! Your main duties will be: Managing and continuously improving the Information Security Management System (ISMS) in line with ISO/IEC 27001 requirements Ensuring the effective execution and maintenance of the PDCA cycle within the ISMS framework Preparing, coordinating, and documenting internal and external ISMS meetings, audits, and management reviews Collecting, structuring, and maintaining ISMS-related evidence and archiving Collaborating closely with IT teams to ensure implementation and effectiveness of security controls Advising business stakeholders on the implementation of information security controls, with a focus on cloud services and external IT providers Securing certification readiness and ensuring ongoing compliance with relevant information security standards and requirements Working closely with the CISO and supporting the DPO (Data Protection) and contributing to the further development of the information security function Your profile University degree in Cyber Security, Information Systems, Business Informatics, IT Security or a related field First practical experience in information security, IT governance, compliance or risk management through internships, working student roles or university projects Basic understanding of Information Security Management Systems and ISO/IEC 27001 concepts as a solid foundation for this role Familiarity with security controls, risk assessments and structured documentation practices First touchpoints with cloud services, third-party risk topics, audits and certification-related topics are preferred Initial exposure to EU regulatory frameworks related to information security and data protection considered an advantage Relevant certifications such as ISO/IEC 27001 Foundation, ISO/IEC 27001 Internal Auditor, CompTIA Security+, ISC2 Certified in Cybersecurity (CC) or Microsoft Security Fundamentals already completed or in progress is a plus High level of integrity, confidentiality awareness and responsibility when handling sensitive information Good communication skills enabling effective collaboration in an international and cross-functional environment Excellent German and English language skills (at least C1, written and spoken) Why us? We are an international and diverse team of passionate and experienced experts, joining forces for a sustainable future! We believe that our team is our core asset and we support our people as best we can. To help you build your future and thrive with us, we offer: Great Team Environment Various team events throughout the year (Celebrating Diversity, Summer Team Event, Christmas Party) Close collaboration with our sister companies Meo Carbon Solutions GmbH, GRAS Global Risk Assessment Services, 4C Services, ClimatePal, and TYC The opportunity to work independently and shape processes Individual learning and development plan Professional onboarding to help you have an ideal start with us Frequent feedback sessions to ensure a high quality of communication and mutual reflection Many free language classes Access to several trainings as well as specific technical courses We promote from within! Work-Life Balance Hybrid set-up 4 weeks remote work at a place of choice (after probation) Flexible working hours and trust based working time 30 vacation days and 3 additional vacation days (Christmas Eve, New Year’s Eve, Carnival Monday) Sabbatical options Financial benefits A generous pension scheme (bAV) in line with our sustainability values JobTicket/Deutschlandticket Annual bonus scheme based on performance Wellness Programs Subsidized Urban Sports Club Health weeks promoting healthy habits in personal and professional life Ready to join our team? Then we would be happy to hear from you soon! Please apply via the button below with a meaningful cover letter, CV and any relevant certificates. We are looking forward to your application and hope to welcome you in our team soon! We are a company with equal opportunities for everyone and encourage applications from all suitably qualified candidates regardless of age, race, gender or any other criteria that is not a professional qualification for an open position. About us ISCC – International Sustainability and Carbon Certification is a globally applicable and leading certification system designed to enhance traceable, sustainable, deforestation-free, and climate-friendly supply chains. ISCC certifications are widely recognised and cover sustainable agricultural biomass, biogenic wastes and residues, non-biological renewable materials and recycled carbon-based materials. The development and implementation of different certification standards is ISCC’s tool to promote its mission to mitigate climate change and bring more traceability into global markets and supply chains. To date, ISCC holds more than 15,800 valid certificates in 130 countries. Our close-knit team of dedicated, supportive, and highly motivated professionals at ISCC come from a variety of backgrounds, which contributes to the diverse and dynamic work environment. We all work together with a shared enthusiasm for sustainability and a common objective. We look forward to having you join our team at the ISCC headquarters in Cologne if you think we are a good fit for you.

Responsibilities

Manage and continuously improve the Information Security Management System (ISMS) in accordance with ISO/IEC 27001 standards. Coordinate audits, maintain security evidence, and advise stakeholders on security controls for cloud services and external providers.