Information Security Officer (ISO) (f/m/d) - Cloud Development: Service Integration

at subsidary IONOS SE in Berlin
Full-time | Permanent | Professionals
Reference ID: I-362

share

• facebook
• LinkedIn
• Twitter
• Xing
• E-Mail

print

About us

IONOS is the leading European digitalization partner for small and medium-sized businesses (SMB). The company serves around six million customers and operates across 18 markets in Europe and North America, with its services being accessible worldwide. With its Web Presence & Productivity portfolio, IONOS acts as a 'one-stop shop' for all digitalization needs: from domains and web hosting to classic website builders and do-it-yourself solutions, from e-commerce to online marketing tools. In addition, the company offers Cloud Solutions to enterprises who are looking to move to the cloud as their businesses evolve.   

As an Information Security Officer (ISO) specializing in Cloud Development at IONOS, you will be an integral part of our Service Integration team. You'll collaborate closely with software compliance engineers and software engineering trainers to safeguard our cloud infrastructure and foster a culture of security.

Tasks

• Develop and Implement Security Measures: Design, implement, and maintain robust security measures to protect our cloud-based applications and infrastructure.
• Risk Assessment: Automate and conduct security assessments, identify vulnerabilities, and develop strategies to mitigate risks.
• Collaboration: Work closely with software compliance engineers, software engineering trainers, architects and members of our security organization to integrate security best practices into the software development lifecycle.
• Incident Response: Lead and manage security incidents, ensuring timely resolution and preventive measures.
• Stay Updated: Keep abreast of the latest security trends, threats, and technologies to continually enhance our security posture.
• Compliance & Documentation: Ensure compliance with industry standards and regulations, and assist in audits and certifications as needed. Maintain and automate comprehensive documentation of security procedures, protocols, and incident reports. Establish frameworks that unburden the product development teams.

Qualifications

• Engineering Extraordinaire: You've got a track record of developing, testing, and deploying top-notch code, preferably in Go.
• Cloud Native Connoisseur: Deep understanding and experience with cloud-native technologies and architectures.
• Security Scholar: Extensive knowledge of software security principles and best practices – You've got experience with threat modeling, security code reviews, and vulnerability management. You're not just a compliance guru/gurvi but a security sage.
• Regulatory Rockstar: Deep understanding of GDPR, IT-Grundschutz, C5, ISO 27001, SSDLC, and other relevant standards. You've navigated the murky waters of regulatory requirements and emerged victorious.
• Fluently spoken and written German.

Bonus Points for:

• Certifications in relevant security domains.

Location: Berlin or Karlsruhe.

Benefits

• Hybrid working model with home office option.
• Flexible working hours through trust-based working hours.
• At some locations a subsidized canteen and various free drinks.
• Modern office space with very good transport connections.
• Various employee discounts for activities and products.
• Employee events such as summer and winter parties, as well as workshops.
• Numerous training and development opportunities.
• Various health offers, such as sports and health courses.

apply online now