Information Security Officer (M/F/X)

DO YOU WANT TO MAKE A DIFFERENCE? JOIN OUR TEAM IN BONN FOR A FULL-TIME POSITION, AS SOON AS POSSIBLE

The DHL Group team is the leading mail and logistics service provider for the world. As one of the planet’s largest employers operating in over 220 countries and territories, we see the world differently. Join our team and discover how an international network that is focused on service, quality, sustainability and is able to connect people and improve lives through the power of global trade. And not just for our customers, but for every member of our team as well.

DHL Data & AI is a service line in DHL Group, focusing on leveraging data to create business value. It consists of a dynamic, innovative, and globally diverse team with approximately 120 talented professionals, including Data Engineers, Cloud Engineers, DevOps Engineers, Data Scientists, and Architects. With presences in Singapore and Italy, Bonn serves as DHL Data & AI’s headquarter. The team’s purpose is to unleash the power of data science, drive x-Business Unit AI solutions, foster a data-driven culture, and accelerate digitalization within DHL Group. As part of its work, the team is responsible for creating and maintaining robust data platforms and data pipelines to ensure accurate and efficient data processing and analysis. The team embraces diversity with over 20 nationalities represented and a 30% female workforce, fostering collaboration and the pursuit of excellence.

Your tasks:

You will provide direction, oversight, and execution guidance , and you will influence security for DHL Group cloud solutions provided by the DHL Data & AI service line. You will collaborate with other team s, e.g. i nformation security experts of IT service providers, security business services engineering, or r isk and c ompliance m anagement to advise business customers with security technology roadmaps, architecture, and standards to support the IT s ecurity of the DHL Group. In your functional role you will report to the DHL IT Group Functions CISO .

What you will do:

• Development and maintenance of security governance processes and documentation in the context of building a Google Cloud Platform (GCP) - related advanced analytics platform for DHL.
• Advise, communicate, consult on, and facilitate risk management decisions to different types and levels of stakeholders.
• Advise on creation of Information Security Concepts (ISC) for custom on-prem, Azure, and GCP services and applications developed and deployed by DHL Data & AI.
• Assess, describe, and position advanced technical complexities from a security perspective and align with the CISO organization.
• Consult on the vulnerability management process, including identification, assessment, and remediation of security vulnerabilities.
• Assess overall security posture of existing and newly developed applications and coordinate alignment on implementation of controls and mitigation of risks with the CISO organization.
• Consult on the implementation of security controls and measures in new (GCP) and existing (Azure) cloud environments.
• Leverage senior-level IT security technical expertise in Kubernetes and cloud environments to support the Security effort of the migration from on-prem to GCP as well as for consolidating the security posture on Azure.
• Advise on implementing necessary tools and systems to support information security efforts.
• Participate in architecture and go-live reviews, making sure that security aspects are sufficiently covered.

Your profile:

• Bachelor/ Master in Computer Science .
• ~10 years of practical experience in designing enterprise security architecture including SSDLC and Kubernetes Runtime and Container Security.
• Experience to work with CIS benchmarks, ISO27001, NIST, and BSI recommendations as well as OWASP best practices and threat modeling.
• You should be familiar with security principles and have a critical mindset.
• Strong knowledge of current and legacy security technologies, as well as emerging technologies and IT trends.
• Experience in working in an international company.
• Experience of engaging and interacting with large and heterogenous stakeholder groups including senior management, technology experts, end users, business, and vendor representatives.
• Visionary attitude for Security- First - approach , automation, and standardization .
• Fluency in English, German skills are a plus .