Team Lead Information Security / Information Security...

at  Exasol

The Team Lead Information Security will be responsible for managing the information security function at Exasol and across all subsidiaries. Reporting to the VP IT, you will oversee the day-to-day management of the information security function and team, while driving the information security strategy and program. You will be nominated as the official Information Security Officer of Exasol with a dotted line to the Board.
You will be joining a growing international technology company and will play a pivotal role in implementing security best practices across the organization. Leading a team of 2, you will have the opportunity to shape direction and drive organizational change. With a focus not only on IT Security and hard skills, you will have the opportunity to develop a Security native mindset across Engineering, support all other functions and be a vital part of the secure future of Exasol.

• Strategic Leadership:
• Having an entrepreneur mindset and being willing to get your hands dirty.
• Seeing soft skills as important as hard skills and help developing them within your team
• Design and implement a security strategy aligned with company goals and objectives.
• Function as a translator and adopt the language of stakeholders to translate complex Information Security related topics into simple words.
• Work with the wider leadership team to cultivate a security-centric culture within the organization.
• Regularly report to the board on the state of security at Exasol and the wider threat landscape.
• Operational Excellence:
• Lead the security function to deliver pragmatic and hands-on solutions.
• Collaborate with technical stakeholders to embed security-conscious mindsets within IT and engineering team.
• Lead security incidents and conduct lessons learned exercises to drive continuous improvements.
• Client Engagement:
• Act as the main point of contact for client queries, presenting Exasol’s security posture and program when required.
• Risk Management:
• Help the organization understand its risks and design plans to mitigate key risks.
• Accountable for the successful running of the ISMS.
• Data Protection:
• Build an effective data protection capability, working closely with the DPO and internal data protection coordinators to deliver a globally oriented service.