The Information Security Governance Product Owner (m/f/d) is responsible for the delivery of the governance product and services:
governance service:
design, implementation and continuous improvement of the global Information Security Framework (ISF), aligning it with the evolving business needs, regulatory environment, industry standards and customer requirements. GRC platform service:
oversee delivery of the GRC technology platform, and customer security assurance service.
Creating passion:
your responsibilities
Information Security Framework (ISF) Management:
Design, implement, and maintain the ISF:
policies, standards, procedures, and control baselines, aligned to business needs, regulatory obligations (e.G. NIS2, GDPR), industry standards (e.G. NIST CSF, ISO 27001), and customer contractual requirementsRegulatory Integration & Control Framework Alignment:
Maintain inventory and traceability of external obligations (e.G. NIS2, GDPR, ISO/IEC 27001, IEC 62443) and customer requirements, integrating these into the ISF components (policies, controls)Governance Operations & Executive Engagement:
Oversee ISF governance processes, including stakeholder coordination, approval workflows, and documentationGRC Platform Service Delivery:
Oversee and deliver the GRC platform service to support governance, compliance, risk management, customer assurance and other Corporate Information Security products and service's needsCustomer Security Assurance Service Delivery:
Oversee and deliver the customer security assurance services to support business teams in agreeing and complying with customer security requirementsGovernance Metrics & Reporting:
Design key risk and performance indicators, dashboards and report on the governance product and services relevant for management at the Liebherr group, divisions and companies
Contributing your strengths:
your qualifications
Bachelor's/Master's in Cybersecurity, Computer Science, or related field10+ years of working experience in IT, Cybersecurity Governance or related roles5+ years of working experience in global organizations including Governance, GRC technology and customer security assurance services deliveryFollowing certificates are preferred:
CISSP, CRISC, CISM, GSLCExcellent written and verbal communication skills in English, German is a plusProven expertise in designing and maintaining information security governance frameworks using industry standards e.G. NIST CSF, ISO/IEC 27001, IEC 62443 and requirements in security regulations e.G. NIS2, GDPR, Defense contractingAbility to lead multi-stakeholder governance processes across global business units and ensure documentation is structured, endorsed, and maintainedExperience in applying agile principles (e.G. iterative planning, continuous improvement, stakeholder collaboration) to the delivery and evolution of governance services, frameworks, or organizational processesExperience in owning and evolving enterprise GRC platforms to support compliance, risk, and governance servicesStrategic thinking combined with a pragmatic execution mindset, especially when aligning governance with operational realitiesHighly desirable:
experience in product ownership and service delivery using SAFe (Scaled Agile Framework) or similar agile methodologies
Our commitment to you:
your benefits
As an internationally successful family business, the Liebherr Group offers you a secure job, a unique variety of tasks and exciting development opportunities. Become part of our strong team today and get to know the Liebherr Group as a reliable partner. Profit from these benefits:
Attractive salary and social benefitsFlexible and hybrid workingFreedom for creative workSafe and secure workplaceIndividual development and training opportunitiesMeal voucherLife and accident insurancePrivate health insuranceChristmas and holiday bonus payments
Please only use the online application option.Please note that we do not accept applications via recruitment agencies for this position.
Have we awoken your interest? Then we look forward to receiving your online application. If you have any questions, please contact Ivana Kiesewetter.
One Passion. Many Opportunities.
The company
Liebherr is a family-run technology company that is not only one of the largest construction machinery manufacturers in the world, but also offers high-quality, user-oriented products and services in many other areas. The Group employs nearly 50,000 people in more than 140 companies on all continents.
Location
Liebherr IT Service Center Ibérica S.L.
C/ Aluminio 6-8
19200 Azuqueca de Henares
Spain (ES)
Contact
Ivana Kiesewetter
ivana.kiesewetter@liebherr.com#J-18808-Ljbffr