Head of Information Security

This is a fully remote position, open to applicants in Germany.

📋 Description

• Define and lead the information security strategy and roadmap for Chrono24.

• Take ownership of information security governance, risk management, and compliance.

• Direct and coordinate incident response procedures with the Security Incident Response Team (SIRT).

• Manage the vulnerability management program and oversee the bug bounty initiative.

• Develop and implement the security awareness program throughout the organization.

• Evaluate and manage security risks associated with third-party vendors.

• Ensure audit readiness and compliance for ISO 27001 and prepare for NIS2.

• Contribute to business continuity management and security-related processes.

⛳️ Requirements

• Technical background in software engineering, DevOps, or a related field.

• Multiple years of professional experience in the field of information security.

• In-depth knowledge of ISMS frameworks, particularly ISO 27001.

• Practical experience in risk management, incident response, and vulnerability management.

• Excellent communication skills to effectively convey security-related topics.

• Collaborative mindset when working with cross-functional teams and senior stakeholders.

• Proficient in English; proficiency in German is a significant advantage.

• Additional qualifications such as CISSP, CISM, or ISO 27001 Lead Auditor/Implementer are a plus.

🏝️ Benefits

• 30 days of vacation per year.

• Complimentary daily meals at HQ in Karlsruhe.

• Extra days off on December 24th and 31st.

• Opportunity to work abroad for up to 20 days each year.

• Strong focus on diversity and inclusion.