Information Security Manager (f/m/d)

At Acrolinx, we envision a world connected by amazing content that’s ready to make an impact. We help the world’s Fortune 2000 brands to create amazing content at massive scale — across writers, workflows, languages, and cultures. Built on an advanced Al engine, Acrolinx is the only software platform that can actually “read” your content and guide writers to make it better.

You’ll be an important member of the Information Security team, performing a number of key tasks including customer-facing interactions, managing our InfoSec knowledgebase, maintaining close communication with internal stakeholders to knowledge sharing, and collaborating with our technical teams on risk and compliance matters. As part of the Information Security Team, you’ll work closely with experienced colleagues to maintain and improve our high governance & risk standards and to support our ISO 27001 compliance. If that sounds like you, we’d love to have you join us!

This role is remote, however candidates near our Berlin, Germany HQ can work hybrid.

Your Team

You’ll join an international team of friendly, dynamic people who are passionate about their jobs.

You Can Expect

• A flat, informal hierarchy and quick decision-making processes.
• Support in getting up to speed from experienced colleagues.
• Teammates of all ages and backgrounds.
• We strongly encourage diversity in our team and share a respectful and open mindset.
• Work in a professional and respectful environment
• To work for a company working on leading edge AI technologies delivered in the cloud.

Your tasks

• You will be one of our central contacts for information security
• Function as an information security interface in between internal leads and our customers
• Provide responses to new and existing customer security questions and reviews
• Support the management of a companywide security knowledgebase and help us to improve our internal collaboration
• Author, review, and update guidelines, policies, and general documentation.
• Regularly engage with internal stakeholders to perform information gathering and knowledge sharing
• Work closely with our technology teams (IT, Cloud Operations, R&D, etc.) to establish and optimize internal processes including IT governance in the context of information security
• Collaborate in creating, coordinating and monitoring our security strategy
• Support our continuous compliance initiatives, monitoring, audits, and reviews, including those for our ISO 27001 certification
• Preparation and participation in audits and customer driven security checks
• Coordination of activities to resolve potential security incidents (Security Incident Management)
• Design, document, assist, and accompany the implementation of security policies, guidelines, regulations, processes and procedures
• Plan, implement and organize security awareness programs and campaigns for the entire staff, including phishing simulations.
• You support strategic and technical initiatives, perform operational risk assessments and manage risk acceptance activities
• You develop annual risk posture, remediation recommendation report, and completion verification reviews of security projects and initiatives

Your Profile

• Several years of professional experience in the IT or cyber security environment – especially in the areas of cyber defense, incident response, security analysis or vulnerability management
• Understanding of, and ability to explain information security concepts, such as access control, encryption, authentication, penetration testing, vulnerability management, etc.
• General knowledge of different IT security solutions (e.g. SIEM, endpoint security, firewalls, IDS/IPS, EDR/XDR ) or the protection of operating systems
• Demonstrated ability to interview stakeholders in different disciplines and distill critical concepts and information pertaining to information security
• Basic project management skills in order to plan out tasks, understand dependencies, and manage timelines
• Independent, analytical, methodical, proactive approach
• Exceptional written, verbal, and interpersonal communication skills
• Proven ability to confidently convey technical information to a non-technical audience
• Focused mindset on continuous improvement and proactively identify, review, and implement process improvements
• Strong understanding of how security issues and initiatives can affect organizations positively and negatively
• Certification in a related field, highly valuable: CISSP, CISA, CISM, CCSP, CRISC, etc.
• Proficient in English (German a plus)

At Acrolinx, we embrace diversity as a catalyst for change – in our global offices and in our supply chain. We believe that it makes us a better, more innovative company.

We’re strengthening the talent at Acrolinx with a greater focus on diversity and inclusion. Acrolinx welcomes employees from diverse backgrounds such as language/linguistic ability, ethnicity, nationality, sex, sexual orientation, gender identity and expression, class, religion, disability, age, military status, visa status, economic status, and geographic location.

Acrolinx also acknowledges that diversity cannot exist without inclusion and accessibility, and we commit to growth in all areas.