The Senior Site Security Manager will join the Competence Centre Crypto and Security (CCC&S) team, focusing on Site and Process Certification. This role involves safeguarding intellectual property at the Hamburg Site and ensuring compliance with information security standards such as ISO 27001, Common Criteria, and GSMA. Key responsibilities include defining security designs, implementing physical security programs, managing security documentation, conducting audits, and overseeing incident and risk management processes. The manager will also coordinate with various departments and support security certification activities.

Must Have

• Define the security design for the Hamburg Site to protect intellectual property.
• Develop and implement local physical security programmes.
• Ensure ongoing compliance with Information Security standards (ISO 27001, Common Criteria, GSMA).
• Collaborate with site management and interface with IT, Cybersecurity, Global Security, Facility Management, HR, and Operations.
• Support the Information Security Management System (ISMS), including maintenance of procedures and documentation.
• Conduct audits, monitor operational areas, and supervise incident and risk management processes.
• Manage the in-house contracted security staff.
• Prepare and present local security-awareness training sessions.
• Minimum of three to five years’ relevant work experience in site security.
• Solid understanding of physical security practices and principles.
• Fluency in German and very good proficiency in English.

Good to Have

• Experience with technical systems such as CCTV, access control, and intrusion detection systems.

The Site and Process Security Certification (SPSC) team forms an integral part of the Competence Center Crypto & Security (CCC&S) within the CTO organisation. The primary aim of this team is to support various business units in matters relating to product certification and to facilitate customer interactions concerning security certification. The SPSC team is actively involved in assessing site and process security requirements with both customers and regulatory bodies, adhering to a range of international standards such as ISO 27001, Common Criteria, GSMA SAS-UP, IEC 62443, and ISO 21434. Additionally, the team manages security-related tasks and lends support to security initiatives regarding standardisation and interpretation.

We are seeking a candidate to join the Competence Centre Crypto and Security (CCC&S), specifically within the Site and Process Certification team. The successful applicant will assume the position of Site Security Manager, responsible for supporting both the Site Certification team and the Site Management team to safeguard intellectual property. Furthermore, the Site Security Manager will ensure ongoing compliance with relevant Information Security standards (such as ISO 27001, Common Criteria, GSMA, among others).

Key Responsibilities

Site Security Management

• Define the security design for the Site to ensure the protection of intellectual property.
• Develop and implement local physical security programmes.
• Apply customer-specific physical security requirements.
• Establish and enforce local physical security policies and procedures.
• Combine technical skills with knowledge of physical security needs

Alignment and Coordination

• Collaborate with site management to address security needs and requirements.
• Interface with various departments, including IT, Cybersecurity, Global Security, Facility Management, HR, and Operations, to coordinate audit preparation and day-to-day operational requirements.
• Participate in security-related reviews alongside multiple teams and stakeholders.
• Engage in negotiations and manage site security matters in conjunction with security vendors.
• Prepare and present local security-awareness training sessions.

Security Management System and Documentation

• Support the Information Security Management System (ISMS), including the maintenance of procedures and documentation.
• Assist with the implementation of security requirements tied to certifications or specific customer demands.

Controls and Reports

• Creation of security reports for certifications, aided by the local team and certification managers.
• Conduct audits, monitor, and control various operational areas to ensure adherence to relevant requirements.
• Supervise incident and risk management processes for the site.
• Evaluate the impact of site changes on security, ensuring ongoing compliance with security standards and company policies (site change management).
• Manage the in-house contracted security staff.

Certification Team Support

• Participate in security certification team meetings and provide project status updates.
• Assist Site Security & Certification Managers in organising security audits within Germany.
• Help the Site Certification team to maintain the project pipeline and plan certification activities.

Candidate Profile

• A university degree in Security Management or a closely related discipline is preferred.
• A minimum of three to five years’ relevant work experience in site security.
• Solid understanding of physical security practices and principles.
• Proficiency in Microsoft Office tools, including Excel and PowerPoint..
• Demonstrates a driven and results-oriented personality.
• Excellent communication and networking skills.
• Engaged, self-motivated, and adaptable in approach.
• Strong organisational and planning abilities.
• Effective verbal and written communication skills.
• Fluency in German, with very good proficiency in English.
• Optional: Experience with technical systems such as CCTV, access control, and intrusion detection systems.

Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary