Overview Responsible for the delivery of the governance product and services: governance service: design implementation and continuous improvement of the global Information Security Framework (ISF) aligning it with the evolving business needs regulatory environment industry standards and customer requirements. Support delivery of the GRC platform service and customer security assurance service.
Location Please note that the working location for this position will be in Madrid city centre where we are currently setting up a new office location. Until the office is fully set-up within the next few months you will have the possibility to work flexibly from home-office and continue with a hybrid working model position is not a fully remote position and an onsite presence will be required once our office location is ready.
Responsibilities Information Security Framework (ISF) Management: Design, implement and maintain the ISF: policies, standards, procedures and control baselines aligned to business needs regulatory obligations (e.g. NIS2 GDPR), industry standards (e.g. NIST CSF ISO 27001) and customer contractual requirements.
Regulatory Integration & Control Framework Alignment: Maintain inventory and traceability of external obligations (e.g. NIS2 GDPR ISO / IEC 27001 IEC 62443) and customer requirements integrating these into the ISF components (policies, controls).
Governance Operations & Executive Engagement: Oversee ISF governance processes including stakeholder coordination, approval workflows and documentation.
Collaborate and support the GRC platform service owner to deliver technology required to enable digital implementation of the information security framework.
Collaborate and support the Customer Security Assurance Service owner by delivering governance which supports the business to comply with customer security requirements.
Governance Metrics & Reporting: Design key risk and performance indicators dashboards and report on the governance product and services relevant for management at the Liebherr group divisions and companies.
Qualifications Bachelors / Masters in Cybersecurity, Computer Science or related field
5 years of working experience in global organizations including Governance GRC technology and customer security assurance services delivery
Following certificates are preferred: CISSP, CRISC, CISM, GSLC
Excellent written and verbal communication skills in English; German is a plus
Proven expertise in designing and maintaining information security governance frameworks using industry standards e.g. NIST CSF ISO / IEC 27001 IEC 62443 and requirements in security regulations e.g. NIS2 GDPR; Defense contracting
Ability to lead multi-stakeholder governance processes across global business units and ensure documentation is structured, endorsed and maintained
Experience in applying agile principles (e.g. iterative planning, continuous improvement, stakeholder collaboration) to the delivery and evolution of governance services frameworks or organizational processes
Experience in owning and evolving enterprise GRC platforms to support compliance, risk and governance services
Strategic thinking combined with a pragmatic execution mindset especially when aligning governance with operational realities
Highly desirable: experience in product ownership and service delivery using SAFe (Scaled Agile Framework) or similar agile methodologies
Benefits Our commitment to you: as an internationally successful family business the Liebherr Group offers you a secure job, a unique variety of tasks and exciting development opportunities. Become part of our strong team today and get to know the Liebherr Group as a reliable partner. Profit from these benefits:
Attractive salary and social benefits
Flexible and hybrid working
Freedom for creative work
Safe and secure workplace
Individual development and training opportunities
Meal voucher
Life and accident insurance
Exclusive offer for a premium private health insurance package
Bonus payments for Christmas and holidays based on the collective agreement
Please only use the online application option.
Please note that we do not accept applications via recruitment agencies for this position.
Have we awoken your interest? Then we look forward to receiving your online application. If you have any questions please contact Ivana Kiesewetter.
One Passion. Many Opportunities.
The company Liebherr is a family-run technology company that is one of the largest construction machinery manufacturers in the world and also offers high-quality user-oriented products and services. The group employs nearly 50,000 people in more than 140 companies on all continents.
Location Liebherr IT Shared Service Centre Ibrica S.L., Madrid, Spain (ES)
Contact Ivana Kiesewetter
Key Skills
International Development, EMC, JavaScript, Import & Export, Airlines, Asp.Net MVC
Employment Type: Full-Time
Experience: years
Vacancy: 1
#J-18808-Ljbffr