CISO (Chief Information Security Officer) – InfoSec

Über das Unternehmen

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax and related services. With more than 175 years of history, Deloitte serves clients in virtually all industries, offering a vast array of services to help them meet today’s complex business challenges. Our purpose is to make an impact that matters for our clients, our people, and society. In Austria, Deloitte has a strong presence, delivering innovative solutions and fostering a culture of integrity, excellence, and collaboration. We are committed to building a secure future for our clients and our own operations, making this CISO role critical to our strategic vision.

Stellenbeschreibung

We are seeking a highly experienced and strategic CISO (Chief Information Security Officer) to lead our information security program at Deloitte Austria. The CISO will be responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. This leadership role involves direct collaboration with senior management, ensuring that security initiatives align with business objectives and regulatory requirements. The ideal candidate will possess deep technical expertise combined with exceptional leadership and communication skills, capable of driving a security-conscious culture across the organization.

Hauptverantwortlichkeiten

• Develop, implement, and monitor a comprehensive enterprise information security program to protect the confidentiality, integrity, and availability of information assets.
• Formulate and implement information security policies, standards, and guidelines in alignment with global frameworks and local regulations (e.g., GDPR, NIS Directive).
• Lead and mentor a team of security professionals, fostering a culture of continuous improvement and professional development.
• Oversee security risk assessments, vulnerability management, and penetration testing, providing recommendations for remediation.
• Manage incident response planning, including development of playbooks, communication strategies, and post-incident analysis.
• Collaborate with internal stakeholders (IT, Legal, HR, Audit) and external partners to ensure security requirements are integrated into all projects and operations.
• Stay current with the latest security threats, technologies, and regulations, adapting the security strategy as needed.
• Report on the state of information security to the executive board and relevant committees.
• Oversee security awareness training programs for all employees.
• Manage the information security budget and resource allocation efficiently.

Erforderliche Fähigkeiten

• Minimum of 15 years of progressive experience in information security, with at least 5 years in a senior leadership role (e.g., CISO, Head of InfoSec).
• Proven experience in developing and implementing enterprise-wide information security programs.
• Strong understanding of security frameworks and standards (e.g., ISO 27001, NIST, CIS Critical Security Controls).
• In-depth knowledge of current and emerging security threats, vulnerabilities, and counter-measures.
• Expertise in risk management methodologies and incident response.
• Excellent communication, presentation, and interpersonal skills, with the ability to influence at all levels of the organization.
• Strong leadership and team management capabilities.
• Fluency in English and German is required.

Bevorzugte Qualifikationen

• Master’s degree in Computer Science, Information Security, or a related field.
• Relevant professional certifications such as CISSP, CISM, CISA, or CCSP.
• Experience in a global professional services or consulting firm.
• Familiarity with cloud security principles and practices (Azure, AWS, GCP).
• Knowledge of Austrian and European data protection laws and regulations.

Vorteile & Zusatzleistungen

• Competitive salary package and performance-based bonuses.
• Comprehensive health and wellness programs.
• Generous vacation and paid time off.
• Extensive professional development and certification opportunities.
• Access to a global network of experts and cutting-edge resources.
• Modern and collaborative work environment.
• Flexible working arrangements (Hybrid model).
• Employee assistance programs and mental health support.

Jetzt bewerben