alpitronic Americas LLC Logo

Information Security Manager (m/f/d)

  • Pubblicato il 28/05/2026
  • Bolzano (BZ)
  • Da definire
Facebook Twitter LinkedIn Segnala un errore

Descrizione:

As the operational owner of Alpitronic’s Information Security Management System (ISMS), you safeguard compliance with ISO27001 and additional security certifications by ensuring that risks, controls, policies and audit evidence are consistently translated into actionable, traceable work across our tooling ecosystem (IMS, Jira, Confluence). Your mission will be to keep the ISMS reliable, audit‑ready and seamlessly embedded into daily operations.

YOUR RESPONSIBILITIES

  • Operate and maintain the ISMS, ensuring policies, controls, risks and evidence remain accurate, consistent and audit‑ready
  • Translate risk assessments and treatment plans into structured, trackable work items in Jira, ensuring full traceability with IMS documentation
  • Manage the lifecycle of security controls, including implementation, testing, remediation and exceptions
  • Integrate the Information Security function into existing Jira/Confluence workflows, dashboards and templates
  • Maintain controlled security documentation in the IMS and support internal and external audits
  • Coordinate security intake processes, supplier assessments and access/asset governance activities
  • Connect vulnerability and incident outputs to the ISMS and ensure findings drive updates to risks, controls and procedures
  • Provide security guidance to engineering, IT and business teams, supported by live data and metrics

YOUR QUALIFICATIONS & SKILLS

  • Degree in Information Security, Computer Science or similar, or 3+ years of hands‑on ISMS operational experience under ISO/IEC 27001
  • Proven ability to translate risk assessments into actionable, trackable work
  • Strong proficiency with Jira and Confluence (workflows, dashboards, automation, templates)
  • Experience with controlled-document systems (IMS/QMS) and formal document‑control processes
  • Broad understanding of key security domains (IAM, network, application, endpoint, vulnerability and incident management)
  • Knowledge of regulatory frameworks such as NIS2 and GDPR
  • Certifications such as CISM, ISO 27001 Lead Implementer or CRISC are a plus
  • Structured, evidence‑driven working style with strong written communication skills
  • Ability to influence without authority, combined with diplomacy and assertiveness
  • Proactive, organised and collaborative mindset
  • Fluent in English; German and/or Italian is a plus

OUR COMMITMENT

  • Innovative work environment in a young, dynamic team
  • High-tech projects in the future-proof sector of e-mobility
  • Opportunities for advancement in a growing company
  • A wide range of further training opportunities
  • Attractive bonus system and performance-related pay
  • Additional company benefits

#J-18808-Ljbffr