Information Security Manager (all genders)

Your mission

Join airfocus, a standout company recognized by Kununu as a TOP 5% best-rated company for 2023 and 2024, boasting a 4.8 rating and 94% recommendation on Glassdoor - be part of our success story NOW!

airfocus, the world’s first modular product management platform, is growing on all continents.
We have proven to be an up-and-coming industry leader with a proven business model and a first-class team.
Now, with thousands of users from customers like Shopify, Caterpillar, or The Washington Post, it’s time to add fuel to the fire and reach the next level of information security

We are looking for a motivatedinformation security manager who will help handle and manage security requirements, monitor our compliance with ISO27001 & SOC 2 and be the person to talk to our customers and respond to all vendor security questionnaires. In this role, you will directly report to the CTO and CRO and cross collaborate with all departments.

What you’ll do:

• Lead implementation of security controls: With the support of our current Information Security Manager, take charge of implementing and enhancing information security controls, particularly focusing on SOC2, ensuring alignment with laws, regulations, industry standards (e.g., GDPR, ISO27001), and business requirements.
• Monitor and investigate security issues: Oversee the monitoring, investigation, and resolution of issues, creating reports, conducting security assessments, and driving security programs across the organization.
• Manage SaaS product security technologies: Supervise the implementation and management of security technologies related to our SaaS product.
• Support in client interactions: Assist departments with information security-related questions during proposal and negotiation processes with potential clients/customers.
• Drive security awareness: Develop and deliver security awareness and training programs to educate employees on best practices, fostering a strong security culture.
• Conduct security assessments: Perform regular security assessments and audits to identify gaps in the company’s security posture, recommending and driving remediation actions.
• Ensure device compliance: Take ownership of company device management to maintain compliance with regulations and industry standards.

Your profile

• Relevant academic background: Bachelor’s or Master’s degree in IT security, information systems, computer science, technology management, or a similar field, or equivalent apprenticeship experience with foundational knowledge of information security-related topics.
• Understanding of SaaS security: Strong grasp of the security challenges and solutions for modern cloud-based SaaS providers.
• Experience in information security management: At least 1 year of working experience with information security management systems, including risk assessment, threat management, and incident response.
• Problem-solving mindset: Passionate about combining robust security with the fast-paced environment of a SaaS product management startup.
• Project management skills: Self-driven project manager familiar with the workstreams of ISO 27001 and SOC 2 certification processes.
• Technical security knowledge: Basic understanding of modern web application architecture (e.g., OWASP Top 10), cloud hosting technologies (e.g., Kubernetes, infrastructure as code), and best practices for securing these environments.
• Strong interpersonal skills: Ability to communicate effectively with colleagues at all levels, building strong relationships with various stakeholders.
• Language proficiency: Excellent written and spoken English; German is a plus.
• Clean criminal record: Ability to provide a clean criminal record certificate upon request.
• Bonus: Possession of a CIPP/E certification is a strong plus.

Why us?

You'll join a diverse and world-class team with plenty of opportunities for personal growth, impact, and learning.

• Boost your personal development and gain new skills in an exhilarating space.
• Competitive compensation based on prior experience.
• Flexible working hours.
• Equipment support: MacBook Pro or notebook and monitor of your choice.
• Learning budget: We enjoy learning and growing while working on hard problems together. Every year you can spend your learning budget on your professional development (courses, books, classes).
• Remote first team: Work from our cool HQ in Hamburg or anywhere - forever!