Information Security Manager (f/m/d)

We are Safran Passenger Innovations Germany GmbH, a mid-size innovation driven company, that is part of Safran, an international high-technology Group. We are leading the development of wireless, cellular and satellite-based connectivity solutions for aircraft passengers to enable them having the most memorable connected passenger experience. As a high tech innovative company, we make flying fun! So if you're someone that's constantly curious about discovering new ways to advance IFEC, entertainment, or technology as a whole, then you're exactly who we're looking for. Join us!

The Information Security Manager will serve as the technical lead supporting the information gathering, analysis, operation and architecture of Network and Security initiatives at the Company. Additionally, Information Security Manager will be responsible for identifying network and security vulnerabilities, risk management, incident response, and security audit compliance at the Company. This individual will interface with multiple groups within the Company including CSO, Engineering and Product Management. This individual also provides technical support to all users of the company's IS infrastructure to ensure effective, secure, and efficient department operations.

Main Tasks and Responsibilities:

• Provide continuous examination and management of the network and security practices and implementations in the IT Systems infrastructure
• Research, understand, and document business processes, product/system security architecture, associated access requirements, and authentication/authorization methods, requirements, and constraints
• Determine and specify requirements and processes related to information and network security standards, governance, sustainability, and audit compliance, including but not limited to compliance with MPAA, PCI and Group regulations
• Review policies and implementations of open-source software security management
• Guide and instruct developers and engineers on advanced security concepts and demonstrate strategies on how to develop secure code and applications using best practices
• Evaluate, deploy & maintain to assist the engineering teams in using new methods and implementations for detection and prevention of threats and risks
• Analyze IT enterprise security systems, programs, and processes to identify critical gaps or vulnerabilities and act in a proactive manner to reduce risk and protect SPI systems, intellectual property and applications accessed by customers or vendors
• Enable close collaboration among Engineering, IT, senior management and customers/partners regarding implementation and maintenance of strong cyber security practices
• Maintain advanced knowledge within various industry regulatory frameworks (SOX, ISO, NIST, MPAA, PCI, PKI)
• Author and deliver communications regarding security to external and internal parties, including white papers, audit reports and responses to requests for information
• Create and deliver root cause analysis reports, as required
• Perform regular security monitoring to identify any possible intrusions
• Provide input, and support SPI management and coordination of security incident responses
• Provide guidance to IT staff in all network and security initiatives as needed
• Recommend changes to improve systems and network configurations
• Provide input for the IS budget and adhere to it
• Continuously contribute to improve established processes
• Any other duties as assigned
  
  
  

Requirements

Preferred Qualifications:

• Bachelor's Degree in Computer Science or Engineering or equivalent work experience in a related field
• 7+ years of experience in systems security, systems engineering or IT architecture
• Industry standard certified (CEH, Security+, CISSP, SSCP, CISA, etc.)
• Knowledge of Cisco FTD's and/or ACI is an advantage
• Possess advanced technical background and skills in computer and network security and able to work with complex matters that involve software and hardware platforms
• Highly knowledgeable regarding governance, risk, and compliance systems and having experience implementing regulatory frameworks
• Capable of training engineers on advanced security concepts and providing remediation strategies
• Excels in both verbal and written communications with all levels of staff including management, executives, auditors, engineering, IT, legal and third parties
• Linux & Windows operating systems experience and understanding
  
  
  

Soft Skills:

• Strong written and verbal English communication skills
• Must be proactive, meticulous, organized, and detail oriented
• Ability to efficiently resolve problems using logical and methodical methods
• Ability to accomplish multiple tasks
• Ability to work independently with minimal direction
• Team player and passionate about their craft
  
  
  

Benefits

You will have the opportunity to contribute to challenging tasks in the field of Aviation and Inflight Entertainment technologies. Our success lies in our people. We are an equal opportunity employer that values diversity. Be part of an innovation-driven company culture and a dynamic international team of experts whose working language is English...and Bavarian (nur wennst konnst und mogst).

Working at SPI means:

• Enjoying flexible working hours in a friendly family atmosphere
• Having a hybrid work set up
• Being flexible to work up to 4 weeks per year from EU-countries
• Having a fantastic team to work with
• Having an open-door policy
• Benefiting from training and career development opportunities
• Receiving great Benefits Offer (childcare support, home office allowance, relocation support, E-Gym Wellpass, and many more)
• Working by the P&P rule - Productivity and Party - be productive but also enjoy events like Family BBQ, Octoberfest, X-mas party, team events
• Inviting office area where you can meet & greet while enjoying free coffee, snacks, fruits and beverages
• Connecting to Munich city center in just 30 minutes
• Living in one of the most culturally vibrant regions of Germany where other people spend their holidays
  
  

If we sparked your interest, we are looking forward to your application.