Information Security Officer (m/f/d)

Welcome to the candy family, which includes Ragolds Management Service GmbH as well as its big sister Sweet Tec GmbH. In the Hamburg metropolitan region, we provide services in various areas to support our manufacturing companies, which produce fruit gums, soft gums, sweets, lollipops, toffees, vegan products and nutritional supplements with a great deal of in-depth product expertise. We are a committed and sustainable family business with almost 800 employees in the Group, and we are continuing to grow.

Shape a secure tomorrow with us! Take responsibility for information security and contribute your ideas – as an Information Security Officer (m/f/d).

Please note that we do not return documents in paper form and destroy them after the process has been completed in accordance with data protection law. It is therefore best to apply directly via our homepage.

You are the centralpoint of contactfor all information security issues in the Group and report directly to the management:

• Strategy & ISMS
  • Managing the establishment, operation and further development of the information security management system (ISMS) for the entire group of companies.
  • Coordination of information security objectives with the strategic objectives of the Group.
  • Ensuring compliance with regulatory requirements, in particular the NIS2 directive
• Guidelines, processes & audits
  • Collaboration on or creation of group-wide guidelines and procedural instructions on information security, including coordination with management, IT and, if applicable, external ISBs
  • Supporting the specialist departments in the creation of department-specific regulations on information security
  • Planning, implementation and follow-up of internal audits in the area of information security
  • Preparation, support and follow-up of certifications and external audits (especially in the context of NIS2 / ISO 27001)
• Operational information security management
  • Leading the analysis and follow-up of information security incidents and reporting to management
  • Ensuring that information security documents are accessible to all relevant employees and are put into practice
  • Close cooperation with emergency management to maintain information security in emergency and crisis situations
• Training, awareness-raising & collaboration
  • Conception and coordination of target group-oriented training and awareness-raising measures on information security
  • Regular exchange with data protection officers, IT, specialist departments and external information security partners
  • Preparation of an annual information security report for the management, including key figures, status of measures and suggestions for improvement (in accordance with ISO 27001 requirements for management reviews)

• Successfully completed studies in computer science, information technology or a comparable qualification or professional experience in the field of information security, IT security or IT organization
• Certification as an information security officer (m/f/d), ideally supplemented by a qualification as an information security auditor (m/f/d) – or the willingness to acquire this in the near future
• Sound knowledge of information security management systems, in particular according to ISO/IEC 27001/27002, as well as the regulatory requirements according to NIS2
• Experience in planning and conducting internal and external audits
• Strong solution- and process-oriented approach and understanding of business contexts
• High level of communication and advisory skills in dealing with management, executives and specialist departments
• Strong service orientation and enjoy building and continuously improving structures
• Very good written and spoken German; knowledge of English is an advantage

• Permanent employment contract – we focus on long-term cooperation
• Flexitime with core working hours 09:00-15:00 (Fridays only until 12:00!)
• Mobile working on up to 2 days per week
• You culture & flat hierarchies – for us, team counts instead of title
• JobRad – for the sporty journey or private balance
• A perfect start guaranteed: onboarding day and structured induction plan – so that you feel at home right from the start.
• Fitness for body & mind: 800 m² studio directly at the Boizenburg site – including free courses