InfoSec Manager Global SecDevOps Governance Center

CARL ZEISSCarl Zeiss AG branded as ZEISS, is a German manufacturer of optical systems and optoelectronics, founded in Jena, Germany in 1846 by optician Carl Zeiss.ZEISS is headquartered in Oberkochen, Germany and enjoys a global presence and rich heritage of being in business for more than 170 years.ZEISS today operates in the following businesses:• Semiconductor Manufacturing Technology• Industrial Quality & Research• Medical Technology• Consumer MarketsWe are located today internationally in almost 50 countries and have 25 research & development sites, 60 sales & services locations and 30 production sites.In India, ZEISS is headquartered in Bangalore and has been present in India for 20+ years with an employee strength 1000+ has been one of the Top 10 markets of ZEISS. We have all the above Business Groups & 3 Global Centers in India. The global centers include:- Global IT center- Global R&D Center- Global Production and Assembly FacilityOur R&D and IT teams have seen tremendous growth in the last couple of years with some exciting projects in hand which provide global exposure via global stakeholders while working with one of the best German companies in the world.In India, other than Bangalore we have a production unit in Delhi and offices in Delhi, Mumbai, Kolkata, etc.Job specificationsEducationAt Least a bachelor's degree in computer sciences or any related discipline.Work experience8 - 18 years of experience in solution development and operation, including in positions such as Agile Coach, product Owner, or Project manager. Strong experience in secure digital solution design or development /engineering (SW and HW) in large organizationStrong experience in Secure DevOps development practices, and experience in secure CI/CD pipelines.Strong expertise in Community management as well as stakeholder expectations and experiences managementUnderstanding of staff education, e-learning, knowledge managementExcellent written and oral/digital communication skills with multiple levels of leadership involving both business and technical sides of the businessDemonstrated passion for understanding ambiguous, complex problems and driving high-quality, innovative, and robust solutions.Additional experienceTechnical leadership mindset, proactive and result oriented.Solid knowledge of industry Security standards and technology such as ISO27002, PCI Compliance, NIST/DISA, CSL; etc.Advanced knowledge of DevOps Architectures and principle.Effectively collaborate with a variety of stakeholders, from senior management to technical teams.Capacity to map and document technical blueprint DevOps ArchitecturesAutodidact and rigorous and comfortable working in fast-changing environmentsStrong communication and presentation skills for mentoring and fostering security cultureCritical thinker with strong problem-solving skill and High level of personal resilienceSelf-driven, results-oriented approach to work. Ability to work in a team and manage/coordinate together with the Business Information Security Officer (BISO) a community of 100+ Security Engineers. Ability to work under pressure and make sustainable decisions in time-critical situationsProactive attitude and high degree of independence. Flexibility in working hours and willingness to travelFluent knowledge of Business English, further languages are of advantage.Experience in leading initiatives, activities or communities leveraging global teams with matrix resources Main tasksCore responsibilities:Manage a global team of SecDevOps experts responsible for implementing and enabling Security by design in business processes. Develop and implement a global strategy to enable the business for implementing security technology and the secure use of SecDevOps technologiesWork with all ZEISS business units and corporate functions to understand their specific security requirements and provide guidance for utilizing new security technologies to their full potential while maintaining the necessary InfoSec requirementsEvaluate emerging security technologies for their security risks and provide guidance on risk mitigation strategies and work with all ZEISS business units to understand their specific security requirements related to emerging security technologiesIdentify and evaluate new security technologies that can be applied to improve security postureKeep up-to-date with industry trends and emerging technologies related to information security and risk managementRaise awareness and promote the use of emerging (security) technology and support the communication and community building in the fieldParticipate in the development and implementation of global InfoSec policies, standards, and procedures and contribute to the development of the global InfoSec roadmap and strategyAct as a liaison between business units and InfoSec teams to ensure effective communication and collaboration on emerging (security) technologiesProvide regular updates to senior leadership on the status of emerging technologies and their security implications.Do you know your way around these? Then our team would love to hear from you!At ZEISS we encourage creative thinking and innovation. We work in dynamic and interdisciplinary, cross-functional teams and offer individual development perspectives as well as flexibility in organizing your work. We care about our employees and take responsibility for improving society and preserving our environment. These core values have shaped our corporate culture at ZEISS for over 170 years. Take responsibility and shape the future of ZEISS!Join us and shape the future! PRB