About us:
Passion for food. Hunger for tech. We make METRO digital.
Today technology is driving the world. And at METRO.digital we are driving the technology for one of the leading international wholesalers specializing in food - METRO. From e-commerce to checkout, to delivery software, we work on a wide range of products to make each day a success for our customers and colleagues. With passion and ownership, we build the future of wholesale.
You are driving to create smart solutions for customers around the globe? You want to grow in a flexible environment? Let the right career opportunity find you and join us!
How will you make an impact?
In this role, your main goal will be to ensure effective governance to align the Information Security Strategy with METRO overall business strategy. You will support the respective METRO local entities in implementing the necessary organizational and technical measures to manage risks and regulatory obligations. Additionally, a desirable outcome is to increase the overall level of maturity regarding Information Security.
You will be in direct contact with local management from METRO countries to support and advise on Information Security related topics.
You will be closely collaborating with the CISO organization providing critical insights to shape, refine, and continuously improve the Information Security Strategy at METRO.
You will be actively managing the relationship with local cybersecurity agencies (if needed) and might contribute actively to the local / national Information Security community.
In case of a severe incident, in your role, you will work closely with the local management and the CISO organization to coordinate the response and make informed decisions.
Your Responsibilities:
- Implement and adapt the METRO AG ISMS to secure the adherence of the local organization and partners to METRO AG ISMS, guidelines and requirements related to Information Security;
- Plan and coordinate the execution of IT and IS risk assessments (including Third-party risks);
- Develop and implement yearly action plan to reduce risks level and increase maturity level aligned with METRO continuous improvement process and ambitions set by METRO AG Board;
- Develop and execute awareness campaign and targeted training for all business functions in the local organization;
- Report IT and IS related information (risks, incidents, and KPIs) to the CISO organization;
- Oversee and coordinate incident response crisis management in relation to information security in collaboration with the CISO organization at METRO AG;
- Support the Legal department with evaluation of relevant information security local laws and regulations;
- Collaborate with the local Data Protection Officer (DPO) and Local Security Officer (LSO) to define, manage and improve relevant interfaces;
- Perform local Information Security assurance reviews (pen-testing, etc.);
- Manage the contact with local cybersecurity agencies (if needed).
Required key competencies and qualifications:
- Excellent communication skills and can communicate effectively with people from a wide range of experiences and professional backgrounds;
- Bachelor’s or Master’s degree in Information Technology/Computer Science/Cybersecurity, Business Administration, or a related technical discipline;
- Experience leading the development and implementation of information security policies, procedures, and guidelines to ensure compliance with relevant regulations and standards;
- Strong knowledge of information security governance, risk management, and compliance principles, practices, and regulations;
- In-depth know-how in management systems, audits, and analyzing vulnerabilities and audit findings;
- In-depth know-how in ISO 27001 or comparable standards;
- Solid experience working in an agile environment and that's where you feel at home.
- Fluency in English (written and verbal).
What we offer at METRO.digital?
- Flexible and remote work: create your own schedule!
Flexibility defines the way we work and interact with each other. At METRO.digital, you have the possibility to work remotely and adapt your working hours in a very flexible way.
- People development: when you grow so do we!
We want you to become the best version of yourself with individual and company-wide programs and trainings for people development. Focused among other on development, leadership, appreciation ... it´s time to upskill your career.
- Support with individual solutions: we are people-caring!
Life is full of surprises, full of challenges and we want to support you – whenever YOU need - at an individual level and during every stage of your life.
Want to know more about all our benefits? Discover more here.
Let´s connect soon. Apply for the role now!
Position grade within our career framework: Domain Owner (Md9)
Job Details
Date posted05 June 2024
Location(s)Düsseldorf, GermanyBerlin, GermanyBucurești, RomaniaCluj-Napoca, RomaniaBrașov, Romania
ProfessionDomain Owner
ProjectResort Green
Employment TypeFull-time