• Ostrau - Moravskoslezský kraj - Tschechische Republik

Your New Mission: Protecting Our Critical Digital Assets

As an Information Security Professional at Siemens Global Business Services (GBS), you will play a key role in protecting the digital heart of our operations. You'll ensure compliance while building and maintaining resilient security defenses, fostering a security-conscious culture, and enabling our innovations to thrive securely. You'll contribute directly to our security strategy and posture, directly supporting our continued success and customer trust of our internal and external customers worldwide.

Your Impact & Key Responsibilities

️ Building Resilient Security Defenses

• Develop and maintain comprehensive Business Impact Analysis and Protection Concepts, establishing the foundation for our security strategy
• Identify and assess risks, performing thorough vulnerability analysis and threat modeling to recommend and implement effective mitigation strategies

Managing Incident Preparedness & Response

• Coordinate and manage critical incident response activities, from detection to resolution, ensuring quick containment and recovery
• Conduct in-depth root cause analysis and prepare detailed post-incident reports to prevent future occurrences

✅ Ensuring Continuous Compliance & Excellence

• Guarantee continuous adherence to regulatory requirements and internal security frameworks (e.g., ISO 27001, NIST, CIS Controls)
• Implement best practices in cloud security for our Azure, AWS, and GCP environments, covering SaaS and IaaS

✅ Building a Security-Conscious Culture

• Design and deliver security awareness training sessions for employees, building understanding of security best practices and fostering a security-conscious culture

What We're Looking For

Technical & Functional Skills

• Security Frameworks & Standards: Proven experience with ISO 27001, NIST, and CIS Controls

• Risk Management & Assessment: Demonstrated experience conducting comprehensive risk assessments, vulnerability analysis, and threat modeling

• Security Tools & Technologies: Experience with SIEM solutions, endpoint protection, and network security tools (firewalls, IDS/IPS)

• Identity & Access Management (IAM): Experience implementing and managing authentication, authorization, and privileged access controls

• Incident Response: Experience handling security incidents and performing thorough root cause analysis

• Cloud Security: Experience securing cloud environments (Azure, AWS, GCP) and applying best practices for SaaS and IaaS

Language Skills

• English: Required (professional working proficiency)
• German: Advantageous

Consulting & People Skills

• Analytical Thinking: Ability to break down complex security challenges, identify vulnerabilities, and develop effective solutions

• Communication & Collaboration: Strong communication and collaboration skills to work effectively with cross-functional teams and explain complex security concepts clearly

• Independence & Prioritization: Ability to manage multiple priorities and work independently

If this sounds like you, we want to hear from you!

Join us and be part of a team that values innovation, collaboration, equal opportunities for each colleague, and excellence.

Apply now with your updated CV in English and let’s create value that lasts together!