Business Information Security Officer

Your responsibilities

• Implement and operationalize information security policies and standards within the product line in alignment with the company’s overall security strategy.
• Act as the primary contact between the business area and the central information security organization.
• Manage and maintain the Information Security Management System (ISMS) within an ISO 27001-certified environment.
• Conduct and oversee information security risk assessments and ensure effective risk treatment.
• Identify, assess, and coordinate remediation of technical vulnerabilities, evaluating both technical and business impact.
• Monitor and enforce technical and organizational security controls.
• Investigate and manage security incidents, supporting incident response and mitigation activities.
• Coordinate and support internal and external security audits, ensuring timely closure of findings.
• Prepare and deliver regular security reporting to management.
• Contribute to projects and product changes from a security governance perspective.
• Promote security awareness and coordinate training activities within the product area.

Our requirements

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Professional certifications such as CISSP, CISM, CISA, or CRISC are an advantage.
• Several years of experience in information security management, preferably in a GRC-focused role.
• Strong knowledge of information security frameworks and standards (e.g., ISO 27001, NIST CSF).
• Experience in risk management, vulnerability management, and incident handling.
• Solid understanding of security technologies and best practices.
• Strong project management and organizational skills.
• Excellent communication and stakeholder management abilities.
• Analytical mindset and strong problem-solving skills.
• Fluent English (written and spoken).
• Readiness to work from the office in Gdańsk min. 2 days a week.

About the Role

What we offer

• An international working environment, atmosphere that stimulates development.
• Individual career path.
• Lufthansa Group membership benefits.
• Flexible working time and place adjusted to employee’s needs. Possibility of starting your workday between 07:00 and 11:00.
• Support for your passion for sports within the local activity group and co-financing Multisport cards.
• Private medical care for employees and their family members.
• Life insurance.
• Stable employment under an employment contract.
• Training opportunities and real growth paths.
• Modern office in Oliwa – great location and comfortable workspace.
• Atmosphere – small teams, high independence, real impact on the project.

Benefits

• sharing the costs of sports activities
• private medical care
• life insurance
• flexible working time
• fruits
• corporate products and services at discounted prices
• integration events
• no dress code
• coffee / tea
• drinks
• parking space for employees
• leisure zone
• extra social benefits
• holiday funds
• sharing the costs of holidays for kids
• sharing the commuting costs

Lufthansa Systems