Information Security Governance Manager (f/m/d)

Salary: 50.000 - 65.000 € per year

• Completed degree in information security, business information technology, computer science, business administration, or a similar field/qualification.
• Several years of experience in information security management/governance, or other information risk management functions.
• Profound knowledge of information security industry standards and regulatory requirements, e.g., ISO/IEC 27001/62443, NIST CSF, NIS 2, DORA, KRITIS. Proven track record of implementing new regulations and maintaining compliance.
• Good understanding of modern IT technology stacks; knowledge and understanding of control system (OT) architecture is a plus.
• Relevant professional qualifications/certifications, e.g., CISM, CRISC, CISSP.
• Excellent communication and interpersonal skills.
• Proactive mindset to anticipate and address potential security issues before they become critical.
• Effective project management skills to oversee the implementation of security initiatives.
• Fluency in written and spoken English; German is a plus.

• As the Information Security Governance Manager, I support the development and implementation of Uniper's information security strategy, Information Security Management System (ISMS) policies, and governance framework. My role focuses on establishing and maintaining a robust and comprehensive security framework to ensure adherence to regulatory requirements, industry best practices, and standards. The mission is to maintain the integrity and protection of Uniper's information assets through an effective ISMS. Key responsibilities include:
• Serving as a Subject Matter Expert (SME) on Uniper's information security strategy, governance, and associated critical processes.
• Developing and managing comprehensive information security strategies, standards, and processes, ensuring enforcement across Uniper.
• Supporting the review and formal approval process for security governance documents and coordinating updates to the ISMS policies framework.
• Ensuring ISMS policies and standard documents meet industry best practices, standards, and compliance requirements.
• Defining and ensuring the implementation of information security governance across technologies, departments, and data assets.
• Engaging in preparation for and participation in external and internal audits (e.g., ISO 27001, NIS2, KRITIS, DORA).
• Maintaining awareness and knowledge of current changes within legal, regulatory, and technology environments.
• Supporting overall validation of adherence to ISMS policies and standards through control evaluation.
• Defining and managing key performance indicators (KPIs) to measure effectiveness and compliance related to ISMS policies and standards.
• Collaborating with IT and Operational Technology (OT) teams to ensure security measures and practices are integrated across all technology stacks and control systems.

• Support
• Security

More:

At Uniper, we are committed to rewarding our employees with attractive salaries, an excellent company pension, and health-related benefits for their hard work and dedication to shaping the future energy transition. We offer a supportive working culture that encourages creativity and innovation, with flexible working arrangements and support for home office equipment. Through regular training and workshops, we aim to help our employees visualize themselves within our company as if it were their own.

We support individual potential, personal goals, and ambition, inviting you to be part of our diverse company with colleagues from over 80 countries. Our commitment extends to providing support in areas such as Work-Life-Balance, offering options for how, where, and when to work; modern and ergonomic equipment for workspaces; and mobility benefits. Additionally, we provide health offers such as flu vaccinations and preventive health services, along with a employer-funded company pension scheme.

As an employer, Uniper is dedicated to diversity and equal opportunities and encourages applications from qualified individuals regardless of gender, origin, disability, age, religion, ideology, sexual identity, or marital status. We embrace inclusion and support flexible working.

last updated 34 week of 2025