As the operational owner of Alpitronic’s Information Security Management System (ISMS), you safeguard compliance with ISO27001 and additional security certifications by ensuring that risks, controls, policies and audit evidence are consistently translated into actionable, traceable work across our tooling ecosystem (IMS, Jira, Confluence).
È il candidato/la candidata ideale per questa opportunità? Lo scopra leggendo la panoramica del ruolo qui sotto.
Your mission will be to keep the ISMS reliable, audit‑ready and seamlessly embedded into daily operations.YOUR RESPONSIBILITIESOperate and maintain the ISMS, ensuring policies, controls, risks and evidence remain accurate, consistent and audit‑readyTranslate risk assessments and treatment plans into structured, trackable work items in Jira, ensuring full traceability with IMS documentationManage the lifecycle of security controls, including implementation, testing, remediation and exceptionsIntegrate the Information Security function into existing Jira/Confluence workflows, dashboards and templatesMaintain controlled security documentation in the IMS and support internal and external auditsCoordinate security intake processes, supplier assessments and access/asset governance activitiesConnect vulnerability and incident outputs to the ISMS and ensure findings drive updates to risks, controls and proceduresProvide security guidance to engineering, IT and business teams, supported by live data and metricsYOUR QUALIFICATIONS & SKILLSDegree in Information Security, Computer Science or similar, or 3+ years of hands‑on ISMS operational experience under ISO/IEC 27001Proven ability to translate risk assessments into actionable, trackable workStrong proficiency with Jira and Confluence (workflows, dashboards, automation, templates)Experience with controlled-document systems (IMS/QMS) and formal document‑control processesBroad understanding of key security domains (IAM, network, application, endpoint, vulnerability and incident management)Knowledge of regulatory frameworks such as NIS2 and GDPRCertifications xjrgpwk such as CISM, ISO 27001 Lead Implementer or CRISC are a plusStructured, evidence‑driven working style with strong written communication skillsAbility to influence without authority, combined with diplomacy and assertivenessProactive, organised and collaborative mindsetFluent in English; German and/or Italian is a plusOUR COMMITMENTInnovative work environment in a young, dynamic teamHigh-tech projects in the future-proof sector of e-mobilityOpportunities for advancement in a growing companyA wide range of further training opportunitiesAttractive bonus system and performance-related payAdditional company benefits
#J-18808-Ljbffr