Information Security Officer (m/w/d)

Job Description

ib vogt is a leading utility-scale renewable energy development platform with a global footprint, a 20-year history, and a 15-year track record in utility-scale PV plants, plus a growing portfolio of wind and Battery Energy Storage Systems (BESS) projects. Our development strategy, which focuses primarily on OECD markets, world-scale development pipeline, and IPP business model strongly position ib vogt for delivering long-term value.

As Information Security Officer (ISO), you will be responsible for establishing, implementing, and maintaining IB Vogt's global information security framework. Reporting directly to the Head of IT & Digitalization, you will ensure the confidentiality, integrity, and availability of corporate and project-related data across all regions and business functions.

You will also act as the independent guardian of information security, ensuring compliance with international standards (ISO 27001, NIS2, GDPR) and enabling secure digital growth. You will lead a team of 2 people and co-ordinate external partners.

Responsibilities

• Develop and maintain the Information Security Management System (ISMS), aligned with ISO 27001/27002 and NIS2 standards
• Define security policies, standards, and procedures in coordination with the Head of IT & Digitalization
• Act as the primary point of contact for information security across IB Vogt
• Conduct risk assessments and vulnerability analyses across IT, cloud, and OT/SCADA environments
• Ensure compliance with legal, regulatory, and contractual security requirements (e.g., GDPR, NIS2, CSRD)
• Support internal and external audits and certifications
• Implement incident detection and response processes, ensuring quick containment and resolution of threats
• Monitor security posture across IT infrastructure, ERP, cloud services, and operational systems and oversee third-party/vendor security assessments
• Lead security awareness programs for employees, contractors, and partners
• Promote a security-first culture across business units and global offices.

Qualifications

• Degree in Information Security, Computer Science, or a related field
• 5+ years of hands on experience in cybersecurity, risk management, or IT security
• Proven experience with ISMS frameworks (ISO 27001, NIS2, CIS Controls)
• Knowledge of cloud security (Azure/AWS), endpoint protection, and OT/SCADA security in energy/EPC environments
• Familiarity with data protection regulations (GDPR, energy-sector-specific standards)
• Certifications such as CISSP, CISM, ISO 27001 Lead Auditor/Implementer are highly desirable
• Strong communication and stakeholder management skills
• Fluency in English; German language skills are a plus.

Additional Information

• A truly international working environment with colleagues from all over the world
• An open-minded, friendly, dynamic, and highly motivated team
• Interesting and challenging tasks, and thus a scope of professional growth and development
• We encourage both team work and personal responsibility
• Competitive remuneration, and other exciting benefits.

At ib vogt, we are committed to fostering a diverse, inclusive, and respectful workplace where everyone can thrive. We believe that embracing diverse perspectives drives innovation and helps us better serve the global communities we operate in. As an equal opportunity employer, we provide employment opportunities without regard to age, ethnicity, religion or belief, gender identity, sex, sexual orientation, disability, pregnancy or maternity, marriage and civil partnership, or any other protected status.

We strive to create an accessible recruitment process for all candidates and are happy to discuss reasonable accommodations to support your application. As a global company, we acknowledge that accessibility provisions may vary by location depending on local infrastructure and legal requirements. If you have a disability or require any adjustments during the recruitment process, please let us know - we will do our best to support you.