KMG Kliniken SE
  • KMG Kliniken SE
  • Bad Wilsnack
  • Veröffentlicht vor 6 Tagen

Chief Information Security Officer (CISO) (m/w/d/x)


Über die Stelle

Skip to main content Chief Information Security Officer (CISO) (m/f/d/x)

Bad Wilsnack or Berlin branch Full-time Permanent position Company Profile

KMG Clinics is a healthcare company with locations in northeastern and central Germany that offers highly qualified medical and nursing care in the family-like atmosphere of its facilities. KMG operates acute care hospitals, rehabilitation clinics, senior care facilities, medical care centers, and outpatient nursing services. We are seeking you as soon as possible to serve as Chief Information Security Officer (CISO) (m/f/d/x) to actively manage our information security-particularly in the KRITIS environment-and report directly to the Executive Board at our corporate headquarters in Bad Wilsnack or at our branch office in Berlin. Responsibility: You will take on company-wide management of information security and play a key role in shaping the further development of our security and risk structures. Scope for Influence: The position offers you the opportunity to establish and sustainably embed information security throughout the company. Relevance: You will work in a KRITIS environment with a direct impact on supply security and patient protection. Direct reporting line to senior management and close involvement in strategic decision-making processes. You currently hold a role such as Deputy CISO, ISB, or Senior Security Manager and are looking to take the next step You have experience in information security within regulated environments (e.g., You have in-depth knowledge of ISO 27001, BSI IT-Grundschutz, and NIS-2 You already collaborate with executive management or senior leadership and communicate effectively with your audience Services & Benefits

This is what your day-to-day work looks like Implementation of management reporting for information security and business risks Information Security Management Integration of security into projects and processes ("Security by Design") Risk Management & Compliance Assessment and management of enterprise-wide IT risks Ensuring compliance with regulatory requirements (GDPR, KRITIS, NIS-2) Incident & Resilience Management Analysis and management of risks in the supplier and service provider landscape, including integration of third-party risks into central risk management Close collaboration with all line functions (Medicine, Nursing, Administration, IT, etc.) Management of external partners


© Alle Rechte vorbehalten - meinestelle.de | azubistelle.de