Roles and Responsibilities:
Responsible for implementation, operation and control the local ISMS.
1. Responsible for implementation and application of information security requirements at local level
2. Advises the legal entity representative and the local process owners on information security issues
3. Ensures that the respective local process owners are informed about the relevant information security policies
4. Ensures information security integration in the local processes
5. Based on the GEA global standards, he supports the respective local process owners with information and asset inventory and classification within the respective business process, with the definition of appropriate level of protection needs, with identification and evaluation of the security risks and with definition and monitoring of security measures
6. Supports the local process owner regarding the design and documentation of information security measures within the respective processes and facilitates appropriate evidence documents with the process owner to prove the operating effectiveness of the respective security controls
7. Assigns all identified risks to a respective risk owner and ensures that the respective risk owner commits to the role and its corresponding tasks
8. Supports the risk owners regarding the design of appropriate counter measures
9. Identifies all relevant asset owners who are responsible for the assets and applications supporting the processes in the scope of the ISMS (generally those are the HR, IT On-Site support, Facility Management, Shopfloor and Automation)
10. Instructs the respective asset owner to perform a risk analysis to identify relevant vulnerabilities and security controls
11. Responsible for awareness and training campaigns at the local level
12. Responsible for handling local information security incidents and emergency situations
13. Ensures that the respective asset owners are informed regarding the relevant specific policies
14. Ensures the physical security of all buildings and workspaces are adequately protected according to the ISMS
15. Reports disciplinarily to the site manager and functionally to the BISO and/or RISO
16. Collaborate with local/global IT management solutions.

Qualifications:
1. Bachler or Master Degree in Information Technology/ Computer Science / Cybersecurity, Business Administration, Quality Management or a related technical discipline.
2. Experience in Information, Cyber, or Physical Security and/or general in Management Systems.
3. Good know-how in management-systems, audits, dealing with audit-findings.
4. Knowing security standards such as ISO, NIST, PCI, HIPAA and SOX, cyber essential.
5. Experience in multivendor Management and dealing with multiple suppliers.
6. IT Service Management and ITIL process framework.
7. Interpersonal skills in communication and collaboration.
8. Good communication skills, in English, local language is a plus.
9. Good organizational and project management skills with a very structured and organized approach.
10. Analytical ability, problem solving skills.
11. Capabilities, in financial & Budget ownership.

Company Profile:
We are one of the world’s largest suppliers of systems and components to the food, beverage and pharmaceutical industries, The international technology group founded in 1881, focuses on machinery and plants, as well as advanced process technology, components and comprehensive services.

We are listed in the German MDAX, the European STOXX® Europe 600 Index and is one of the companies that make up the DAX 50 ESG, MSCl Global Sustainability as well as the Dow Jones Sustainability World and Dow Jones Sustainability Europe Indices.