Information Security Officer

Nemetschek are one of Germany's largest software companies and a true pioneer in digital transformation for the architecture, engineering, construction, operations and media industries. With a remarkable growth trajectory — delivering double-digit revenue growth year after year and recently reaching close to €1 billion in annual revenues — Nemetschek stands at the forefront of innovation and business transformation. Our dynamic, global team of over 4,000 experts is driving the shift to SaaS and subscription models, harnessing cutting-edge technologies like AI and digital twins to shape the future of the built environment. If you're looking to be part of a company that is not only aiming at leading its industry but also transforming how the world designs, builds, and manages the spaces we live and work in, Nemetschek is the place to accelerate your career.

We are looking for an experienced
Information Security Officer
to lead security implementation at the brand level, with a focus on an organisational entity within the global ISO organisation. This role oversees the ISMS, ensures ISO 27001 compliance, and drives security initiatives across multiple brands.

Responsibilities

• Information Security Management for one or more Nemetschek Brands (depending on Brand size)
• Operations of the Nemetschek Information Security Management System (ISMS, based on ISO for the Brand(s)
• Maintenance of the ISO 27001 certification on brand level (Sub-certificates)
• Participation in and collaboration with the Information Security Core Community
• Collaboration with and contribution to shared security services
• Implementation or collaboration in projects to improve group-wide or brand-specific Information Security
• Close collaboration with other ISOs and CISOs, as well as internal and external experts
• Permanent learning on the job
• Contribution to the group-wide Information Security Management System (ISMS)
• Management and execution of Security Audits (Security Peer Review)
• Management of security inquiries from 3rd partes like customers or external auditors

Requirements

• Completed studies with content in information security, business informatics or comparable training
• At least 3 years of professional experience in the field of Information Security
• Good communication skills in English
• The ability to think outside the box of Information Security
• Knowledge of relevant security standards and frameworks
• Subject-specific certifications are an advantage
• Very high integrity and trustworthiness
• Motivation to improve our company every day
• Willingness to travel about 1x a month

Key Relationships

• Reports to: Head of Security Management EU Brands

Why Nemetschek?

• Impact: We offer you a diverse position in a motivating work environment where you can realise your ideas.
• Sustainable Growth: In our sustainably growing and innovative company, you have the chance to develop yourself further.
• Culture: With us, you work in an international team with flat hierarchies and short decision-making processes, in which you can make a difference.
• Work-Life-Balance: We offer you various benefits in the areas of sports, nutrition, childcare and much more.
• Health: The health of all employees is important to us, which is why we offer a wide range of health and preventive care services.
• Hybrid Way Forward: Through mobile working and variable working hours without core working hours, we enable you to be flexible, both professionally and privately.

We, the Nemetschek Group, are a global organisation with employees from 60 nations. For us, diversity, equity, inclusion, and belonging are the keys to unleashing our full potential and driving true innovation. We can best support our customers in shaping the world through a diverse culture. We aim to treat EVERYONE with respect and appreciation, regardless of differences. Valuing diverse opinions and creating equal opportunities for all is of the utmost importance for us as an organisation and as individuals.