logo
Alle Stellen anzeigen

Information Security & Compliance Lead (m/w/d)

Festanstellung, Vollzeit · Polen
Lesen Sie die Stellenbeschreibung in:
Your mission
We are seeking an experienced Information Security & Compliance Lead to take ownership of our organization’s security governance, risk, and compliance programs. This role is critical in maintaining our ISO 27001 certification, strengthening our security posture, and ensuring regulatory compliance across all business functions. The ideal candidate will drive a culture of security and collaborate closely with internal stakeholders, control owners, and external partners to uphold robust security standards.
  • Maintain and continuously improve the ISO 27001 Information Security Management System (ISMS).
  • Collaborate with control owners to ensure timely and effective implementation of technical and organizational controls.
  • Lead and conduct internal audits, coordinate external audits, and manage audit findings to closure.
  • Drive and maintain a risk management process, including risk identification, assessment, treatment, and reporting.
  • Own and update security policies, procedures, and awareness programs across the organization.
  • Conduct vendor and third-party security assessments (including DPAs and security questionnaires).
  • Prepare and deliver risk and compliance reports for the Head of IT and the Board of Directors.
  • Monitor changes in relevant laws and regulations (e.g., GDPR, NIS2) and adjust practices accordingly.
  • Support incident response planning and exercises in cooperation with technical teams.
  • Collaborate with IT, Legal, People & Culture, and other functions to ensure alignment on compliance requirements and initiatives.
Your profile
  • Proven experience (3+ years) in Information Security, Risk, or Compliance roles.
  • In-depth knowledge of ISO 27001 standards and certification process.
  • Experience conducting internal audits and managing external audits.
  • Familiarity with frameworks such as NIST, CIS, ITIL, or COBIT.
  • Strong understanding of risk management principles, data protection (e.g., GDPR), and regulatory compliance.
  • Excellent communication skills with ability to present to senior management and non-technical stakeholders.
  • Ability to work independently, influence others, and drive cross-functional initiatives.
  • Experience with GRC tools, vendor assessment platforms, or audit management tools is a plus.
Relevant certifications such as CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or similar are preferred.
Why us?
  • A diverse working environment in which you can contribute your own ideas and potential in the long term.
  • Intensive induction and development opportunities for your professional and personal development in our in-house training center, as well as support from a mentor.
  • Flat hierarchies and an open corporate culture that values teamwork and fun at work.
  • Flexible trust-based working hours with mobile office options and an attractive salary package including standard benefits (MultiSport, LuxMed, Life Insurance, etc.)
  • If you're in the office, we enrich everyday working life with coffee, drinks, company parties and team events.
Contact us

Asseco Solutions AG

People & Culture
Amalienbadstraße 41c
76227 Karlsruhe
Deutschland
jobs.dach@assecosol.com 
Auf diese Stelle bewerben
About us
Do you want a job that is considerate of your life?

Then welcome to Asseco Solutions!
Here, we emphasize that your job integrates into your life - not the other way around.
You have a doctor's appointment or have to pick up your child from daycare? Or you want to work abroad for a few days and combine this with a vacation? We trust you to be aware of your responsibilities and to work conscientiously on your tasks. In return, we give you flexibility and a lot of freedom.

But who exactly is behind Asseco Solutions?

Here are a few hard facts:
We are celebrating our 30th anniversary this year!
We are the leading ERP provider for the upper mid-market
Our turnover in 2022 was 65.98 million euros
We employ over 500 people at 10 locations in Germany, Austria, Italy as well as Guatemala

As part of the Asseco Group, we combine global vision with local expertise with our ERP system APplus we simplify the daily work of our customers and support them in their growth. The ingredients for success are forward-looking technologies such as AI and automation, a comprehensive range of services with industry-specific solutions, intuitive user experience and individual expert advice.

Are you looking for appreciation, a strong team spirit, freedom to work and good development opportunities? Then you have found the perfect employer in us.

Apply today and start a job that is considerate of your life!
Deine Aufgaben
We are seeking an experienced Information Security & Compliance Lead to take ownership of our organization’s security governance, risk, and compliance programs. This role is critical in maintaining our ISO 27001 certification, strengthening our security posture, and ensuring regulatory compliance across all business functions. The ideal candidate will drive a culture of security and collaborate closely with internal stakeholders, control owners, and external partners to uphold robust security standards.
  • Maintain and continuously improve the ISO 27001 Information Security Management System (ISMS).
  • Collaborate with control owners to ensure timely and effective implementation of technical and organizational controls.
  • Lead and conduct internal audits, coordinate external audits, and manage audit findings to closure.
  • Drive and maintain a risk management process, including risk identification, assessment, treatment, and reporting.
  • Own and update security policies, procedures, and awareness programs across the organization.
  • Conduct vendor and third-party security assessments (including DPAs and security questionnaires).
  • Prepare and deliver risk and compliance reports for the Head of IT and the Board of Directors.
  • Monitor changes in relevant laws and regulations (e.g., GDPR, NIS2) and adjust practices accordingly.
  • Support incident response planning and exercises in cooperation with technical teams.
  • Collaborate with IT, Legal, HR, and other functions to ensure alignment on compliance requirements and initiatives.
Dein Profil
  • Proven experience (3+ years) in Information Security, Risk, or Compliance roles.
  • In-depth knowledge of ISO 27001 standards and certification process.
  • Experience conducting internal audits and managing external audits.
  • Familiarity with frameworks such as NIST, CIS, ITIL, or COBIT.
  • Strong understanding of risk management principles, data protection (e.g., GDPR), and regulatory compliance.
  • Excellent communication skills with ability to present to senior management and non-technical stakeholders.
  • Ability to work independently, influence others, and drive cross-functional initiatives.
  • Experience with GRC tools, vendor assessment platforms, or audit management tools is a plus.
Relevant certifications such as CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or similar are preferred.
Unser Angebot
  • A diverse working environment in which you can contribute your own ideas and potential in the long term.
  • Intensive induction and development opportunities for your professional and personal development in our in-house training center, as well as support from a mentor.
  • Flat hierarchies and an open corporate culture that values teamwork and fun at work.
  • Flexible trust-based working hours with mobile office options and an attractive salary package including standard benefits (MultiSport, LuxMed, Life Insurance, etc.)
  • If you're in the office, we enrich everyday working life with coffee, drinks, company parties and team events.
Unsere Kontaktdaten

Asseco Solutions AG

People & Culture
Amalienbadstraße 41c
76227 Karlsruhe
Deutschland
jobs.dach@assecosol.com 
Auf diese Stelle bewerben
Über uns
Hast Du Lust auf einen Job, der auf Dein Leben Rücksicht nimmt? 

Dann sagen wir herzlich Willkommen bei der Asseco Solutions!
Hier legen wir Wert darauf, dass sich Dein Job in Dein Leben integriert - nicht umgekehrt.
Du hast einen Arzttermin oder musst Dein Kind aus der Kita abholen? Oder Du möchtest für ein paar Tage im Ausland arbeiten und dies mit einem Urlaub verbinden? Wir vertrauen Dir, dass Du Dir Deiner Verantwortung bewusst bist und Deine Aufgaben gewissenhaft bearbeitest. Im Gegenzug erhältst Du von uns Flexibilität und viele Freiräume.
Doch wer genau verbirgt sich hinter der Asseco Solutions? Hier ein paar Hard Facts:

  • Unser Unternehmen gibt es schon seit 30 Jahren
  • Wir sind führender ERP-Anbieter für den gehobenen Mittelstand
  • Unser Umsatz betrug 2022 65,98 Mio. Euro
  • Wir beschäftigen über 500 Mitarbeitende an 10 Standorten in Deutschland, Österreich, Italien, Guatemala und Polen
  • Als Teil der Asseco-Gruppe kombinieren wir globale Weitsicht mit lokaler Expertise

Mit unserem ERP-System APplus vereinfachen wir den Arbeitsalltag unserer Kunden und unterstützen sie bei ihrem Wachstum. Die Erfolgs-Zutaten dafür lauten zukunftsweisende Technologien, wie KI und Automatisierung, umfassendes Leistungsspektrum mit branchenspezifischen Lösungen, intuitive User Experience sowie individuelle Expertenberatung.
Bist Du also auf der Suche nach Wertschätzung, einem starken Zusammenhalt, Freiräumen beim Arbeiten und guten Entwicklungsmöglichkeiten? Dann hast Du in uns den perfekten Arbeitgeber gefunden.

Bewirb Dich noch heute und starte in einen Job, der auf Dein Leben Rücksicht nimmt!
Auf diese Stelle bewerben
Wir freuen uns auf Dich!
Wir freuen uns über Dein Interesse an der Asseco Solutions AG. Bitte fülle das folgende Bewerbungsformular aus. Solltest Du Schwierigkeiten mit dem Upload Deiner Daten haben, wende Dich gerne per E-Mail an jobs.dach@assecosol.com.
Datenschutzerklärung
Dokument wird hochgeladen. Bitte warten Sie.
Fügen Sie alle erforderlichen (mit einem * gekennzeichneten) Angaben hinzu, um Ihre Bewerbung abzusenden.