ISMS Specialist (m/w/d)

Our client is one of Germany's most successful information security consulting firms, based in Berlin. They support clients across various industries in implementing, developing, and certifying Information Security Management Systems (ISMS) according to ISO/IEC 27001 and BSI IT-Grundschutz. By combining strategic advice, technical expertise, and practical implementation, they help organizations sustainably strengthen their information security and successfully meet regulatory requirements.

To strengthen the team, we are looking for an experienced ISMS Specialist (m/f/d) with a focus on Audit and Network Security.

Responsibilities

• Design, implement, and continuously develop Information Security Management Systems (ISMS), significantly contributing to the sustainable establishment of information security within the organization.
• Plan, coordinate, and support internal and external audits, as well as certification processes to ensure regulatory and normative requirements are met.
• Conduct security needs, risk, and vulnerability analyses, deriving targeted measures for risk mitigation.
• Develop and optimize policies, processes, and security concepts to establish effective security governance.
• Analyze existing structures and processes using gap analyses and maturity assessments to identify areas for continuous improvement.
• Provide competent advice to management and departments on topics related to information security, compliance, governance, and business continuity management.
• Support the selection, implementation, and ongoing development of modern security solutions and their successful operation within the IT landscape.
• Actively participate in the development of the security strategy and contribute to strengthening the organization's resilience.

Qualifications

• Successfully completed studies in Computer Science, IT Security, Business Informatics, or a comparable qualification, coupled with a strong passion for information security.
• Several years of experience in information security management, governance, risk & compliance, or cyber security, comfortable working within complex organizational structures and engaging directly with stakeholders.
• Daily professional experience in implementing and developing information security standards, demonstrating a deep understanding of established frameworks and best practices.
• Ideally, experience accompanying audit or certification projects, with firsthand knowledge of sustainable compliance and effective security processes.
• Additional qualifications and certifications in information security underscoring professional expertise and commitment to continuous development.
• A combination of analytical strength, a structured, solution-oriented approach, and the ability to maintain an overview even with complex issues.
• Excellent communication and consulting skills, enabling the clear conveyance of technical and organizational topics and successful collaboration among diverse interest groups.
• A confident demeanor, persuasive skills, and a service-oriented approach to building trust and acting as a valued point of contact at all levels.
• Proficient German language skills (written and spoken) for professional and audience-appropriate communication.

Benefits

• Challenging projects with significant scope for creative input.
• Individual professional development and certification support.
• Flexible working hours and modern work arrangements.
• Autonomy and short decision-making paths.
• Modern tools and efficient work processes.
• Attractive additional benefits and pension schemes.
• Open feedback culture and collaboration at eye level.
• Collegial environment with a strong team spirit.

For questions, please contact: Alexander Wuthenow, Tel: 030 2065 84-59.

We value equality. This job advertisement is for everyone. Ethnic origin, gender, age, sexual identity, or disability play no role in hiring decisions, neither directly nor indirectly.