InfoSec Compliance Administrator supporting Sabio's Infosec team in Cape Town managing security activities and ISO certification programmes. Working within a dynamic culture and developing your skills.
About the role
- IT-Security Manager protecting IT infrastructure and ensuring resilience for the energy transition. Focused on cloud, network security, and compliance with key standards.
Responsibilities
- Responsibility for IT security
- Protection of IT infrastructure, in particular cloud, network and critical production systems
- Ensuring endpoint, application and identity security (IAM, MFA, Conditional Access)
- Implementation of Zero-Trust architectures and network segmentation
- Compliance with standards such as ISO 27001 and legal requirements (KRITIS, NIS2)
- Development and implementation of comprehensive technical security concepts and policies
- Conducting security architecture reviews for new projects and technologies
- Introduction and maintenance of KPIs to measure the security posture
- Proactive identification, assessment and remediation of IT security risks
- Continuous monitoring and response to security incidents
- Advising internal departments on security matters related to cloud, IoT and new software solutions
- Organizing and tracking actions arising from ISO 27001 audits
Requirements
- Degree in IT, IT security or equivalent qualification — alternatively several years of relevant professional experience with appropriate further training
- Several years of experience in technical IT security, ideally in the energy sector, critical infrastructures or other regulated industries
- Solid know-how in network security, cloud security (Microsoft Azure), Zero-Trust architectures and modern security solutions
- Experience with sovereign cloud solutions, data sovereignty and data residency
- Practical experience in Identity & Access Management (IAM, MFA, Conditional Access) and working with SIEM/SOC environments
- Knowledge of current standards and methods (ISO 27001, BSI IT-Grundschutz, NIS2, KRITIS) — certifications such as CISSP or Microsoft Security are an advantage
- Analytical and conceptual thinking, solution-oriented and structured way of working
- Strong communication skills and enjoyment of interdisciplinary collaboration
- Very good German and English language skills
- Driver’s license and mobility required
Benefits
- 30 days of annual leave per year (additionally off on 24th and 31st December)
- Overtime tracking that can be converted into flex-time days
- Individual development opportunities and training programs
- Collegial, first-name culture and commitment to diversity
- Employee discounts via the Corporate Benefits platform
- Monthly benefits budget of €50, flexibly usable for sports, shopping or mobility
- Access to the company health insurance fund BKK EWE
- Company pension plan with salary conversion including a 20% employer contribution
- Various leave options through time-value account management (e.g. sabbatical, part-time)
- Significant opportunities for participation and welcome contribution of employee ideas
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Security Consultant advising clients on Cyber Security, GRC, and regulatory requirements. Leading projects and developing security structures for modern IT landscapes.
IT Security Consultant providing technical consultation on Cyber Security projects in various areas including SIEM and Cloud Security. Working in a hybrid role across multiple locations in Germany.
Global Information Security Governance, Risk & Compliance Analyst at Autoliv Romania. Support security compliance activities, foster adherence to frameworks like TISAX and SOX.
Senior Security Detection Engineer providing expertise for RBC's Global Cyber Security. Develops automation for security use cases to enhance detection and response capabilities.
Agent de sécurité humanitaire coordonnant des programmes de sécurité et d'accès en Colombie pour l'IRC, avec un focus sur le soutien aux communautés vulnérables.
Data Security Specialist at MUFG enabling secure use of data across emerging technologies. Managing data security posture and collaborating with stakeholders on data protection strategies.
Principal Product Security Engineer at MYOB using skills to help businesses thrive and shape the future of work. Collaborating with team members to enhance security and customer experience.
Consultant for Network Security Solutions focusing on project management and customer workshops in network security. Engaging with high - tech security solutions for international clients.
IT Consultant specializing in Microsoft 365 and Azure Security solutions with project and client management. Responsibilities include technical workshops, migration planning, and system documentation.