IT_Information Security Advisor

The ISA:

- Works in close cooperation with all relevant local departments as well as with the Regional
Security Manager (ISM).

- Participates regularly in local management meetings.

- Participates annually in a regional InfoSec Workshop organized by the ISM.

- Supports all related local projects in order to ensure InfoSec conformity.

- In the event of substantial deficiencies or severe incidents endangering the security of company
information, the ISA must inform and escalate accordingly to relevant policies.

Support responsible management in the appointed location(s):

- Drive and monitor the implementation and usage of the existing ISMS (Information Security
Management System) according to policies and guidelines as well as to business and customer
requirements (e.g. ISO 27001, 8th European Directive, BSI).

- Conduct and ensure regular trainings, provision of information and advice of all employees,
managers and third parties.

- Drive the appropriate classification of company proprietary information and adequate handling

- Conduct or support risk management activities (i.e. risk assessments, business impact analysis).

- Monitor the development and maintenance of local emergency- and contingency plans.

- Advise in all local aspects of identity- and authorization management.

- Drive secure collaboration and integration of business partners.

- Drive, track, and report detection and remediation of vulnerabilities.

- Monitor and control the effectiveness of InfoSec projects and implemented measures.

- Drive usage of InfoSec processes and tools including documentation.

- Monitor execution of InfoSec reviews and conduct local inspections regularly.

- Execute actions and projects agreed on with the location management and ISM.

- Keep location informed about InfoSec regulations, warnings and news on current/new incidents.

- Take overall responsibility of cyber security audits in the managed locations, and lead all cyber security audit related activities.

- At least 1-3 working experience in information security, information technology or equivalent area.

- Ability to motivate others and raise awareness for InfoSec related risks and threats.
- Ability to balance potential risks and costs of protective measures.
- Beside professional experience, preferred in IT, the ISA should have:
- Training in relevant standards (at least ISO 27001 basics).
- General knowledge about InfoSec related standards, processes and tools.
- Good knowledge of internal organization and local business and processes.
- Good knowledge of the local infrastructure- and application landscape.
- Basic knowledge of InfoSec rules and related laws.
- Good knowledge of English language.

Ready to take your career to the next level? The future of mobility isn’t just anyone’s job. ​Make it yours! ​Join AUMOVIO. Own What’s Next.​

Since its spin-off in September 2025 AUMOVIO continues the business of the former Continental group sector Automotive as an independent company. The technology and electronics company offers a wide-ranging portfolio that makes mobility safe, exciting, connected, and autonomous. This includes sensor solutions, displays, braking and comfort systems as well as comprehensive expertise in software, architecture platforms, and assistance systems for software-defined vehicles. In the fiscal year 2024 the business areas, which now belong to AUMOVIO, generated sales of 19.6 billion Euro. The company is headquartered in Frankfurt, Germany and has about 87.000 employees in more than 100 locations worldwide.