Information Security Intern assisting with components of Benjamin Moore's information security program. Responsibilities include documentation, compliance monitoring, and forensic analysis.
About the role
- Head of Information Security and GRC for Hilti Corporation, leading security programs and compliance in Construction Software. Strategic role with significant influence across a growing business unit based in Austria.
Responsibilities
- Develop and implement Hilti’s Construction SW security program.
- Lead and oversee the Construction SW security team and the Product BISOs.
- On top, act as Product BISO for On!Track.
- Identify and assess product security risks and threats.
- Implement security policies and procedures.
- Ensure compliance with legal and regulatory requirements.
- Collaborate with other executives to integrate security measures into business processes.
- Report to management on security incidents and measures.
- Work closely with other Information Security Officers within Hilti, the Product BISO community and the Group CISO.
- Shape the further development of the ISMS and implement regulatory, organizational, and technical security requirements.
- Analyze regulatory and legal developments (e.g., CRA, NIS2, EU AI data act), translate these into actionable requirements, and oversee their implementation.
- Independently manage business projects related to information and product security, from requirements to implementation.
- Take responsibility for specific security topics such as Cloud & AI Security or technical risk analyses within the BU.
- Contribute to the continuous improvement of the security architecture, the ICS, and the ICT & cyber risk management for Construction SW.
- Own and maintain BU CSW SOC2 certification and support Group ISO27001 certification
- Coordinate internal and external audits in the field of information security and support the implementation of the resulting measures.
Requirements
- Master’s degree in computer science, Information Technology, Information Security, Cybersecurity, or a related field. PhD degree preferred.
- Several years of experience in a leadership position in SW/IT security.
- Multiple years of experience in information security, including being in decision-taking roles.
- In-depth knowledge of security protocols, technologies, and standards (e.g., ISO 27001, SOC2, NIST).
- Experience in developing and implementing security programs.
- Certifications such as CISSP, CISM, CISA, or equivalent are advantageous.
- Proficiency in security frameworks, risk management, incident response, and security architecture.
- Excellent analytical and problem-solving skills. Ability to assess risks and develop mitigation strategies.
- Strong leadership skills. Demonstrate assertiveness.
- Strong written and verbal communication skills. Ability to convey complex security concepts to non-technical stakeholders.
- Capacity to adapt to a fast-paced and evolving environment. Commitment to staying updated on the latest security trends and technologies.
- High level of integrity and ethical standards. Commitment to protecting the Construction SW’s information assets.
- Technical understanding in areas such as Cloud & AI Security, IAM, Endpoint Security, Data Security, SDLC, DevSecOps, Application Security.
Benefits
- A strategic seat at the table with senior leaders, board exposure, and influence across a rapidly growing business unit.
- The opportunity to work from our global headquarters, surrounded by mountain views, modern workspaces, healthy food options, and in-house fitness facilities.
- Relocation support for candidates across Europe, or flexible commuting options for those based in Switzerland or Austria.
- Access to Hilti's global talent development programs, career mobility, and the chance to make an impact far beyond one BU.
- Flexible work arrangements, e-bikes, parking, and on-site daycare to support your full life-not just your work life.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Specialist in Information Security at Lojas Renner responsible for monitoring and addressing security incidents. Collaborating with various teams on data protection strategies and leadership preparation.
Cybersecurity Specialist at Caixa Vida e Previdência ensuring safety in various technology solutions. Collaborating with teams to implement security measures and respond to incidents.
GRC Analyst enhancing governance, risk, and compliance practices within Sword, focusing on cybersecurity standards and configuration management.
Técnico de Segurança do Trabalho at Cia do Treinamento responsible for training clients on safety regulations and conducting safety assessments. Seeking professionals passionate about safety and compliance across Brazil.
Ingénieur en sécurité physique participant à des projets d’envergure au sein de Stantec. Analysant besoins, concevant systèmes de sécurité et préparant documentation technique.
System Security Engineer strengthening cybersecurity posture across on - premise and hybrid environments. Focused on Windows infrastructure security, identity management, and compliance.
Security Testing Lead overseeing application security testing activities at Computer World Services. Ensuring continuous identification and remediation of application security risks through dynamic testing methods.
IS Security Administrator managing all aspects of cyber security and data protection at Avita Health System. Responsible for risk assessments and IT security strategies across various platforms.
Senior Security Engineer strengthening security at fintech startup Flanks, focusing on security initiatives and practices across applications and infrastructure.