Job
- Level
- Experienced
- Job Field
- IT, System, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Salary
- from 3.783 € Gross/Month
- Location
- St. Pölten
- Working Model
- Onsite
Job Summary
In this role, you will enhance the ICT risk management, coordinate risk assessments and security checks, and document and present risks and proposals for action to decision-makers at NÖ LGA.
Job Technologies
Your role in the team
- In this responsible and varied position, you will support the Governance and Controlling Staff Unit of NÖ LGA - Shared Services GmbH, Digitalization Division, in the further development and operation of the established ICT risk management.
- In your role, you will gain broad insights into various areas and topics related to ICT operations at the headquarters as well as the healthcare facilities of the NÖ LGA.
- Significant support in the further development and management of the company's internal ICT risk management system in close coordination with the ICT security officer.
- Overall coordination of the implementation of ICT risk analyses and technical ICT security assessments for core ICT services as well as relevant ICT services in healthcare facilities.
- Collection, preparation, assessment, and documentation of identified ICT risks and proposed measures in coordination with the responsible risk owner.
- Presentation of the analysis results to internal decision-makers.
- Ongoing, cross-service and cross-location tracking of coordinated risk mitigation measures.
- Specification and ensuring the appropriate consideration of ICT security requirements in the procurement of ICT hardware and software solutions, medical technology systems with ICT connectivity, as well as the conduct of ICT cloud security assessments.
- Design and operational coordination of an appropriate framework for managing ICT security risks with contracted ICT service providers (audit/supplier management).
This text has been machine translated. Show original
Our expectations of you
Education
- Completed university degree at Bachelor's level in Computer Science, Business Informatics, IT Security, Engineering with IT focus, or Business Administration with an IT specialization, or comparable.
Qualifications
- In-depth knowledge of information security frameworks (e.g., ISO/IEC 2700x, BSI IT-Grundschutz).
- Methodological competence in risk management (e.g., ISO/IEC 27005, threat modeling).
- ISO/IEC 27001 Lead Implementer/Lead Auditor, CRISC, CISM, CISSP or ITIL preferred.
- Proficient in spoken and written German and English.
Experience
- Practical experience in IT risk management, IT security management, or compliance knowledge in the development of risk analyses, emergency, and security concepts in operations.
- Experience with general regulatory requirements (e.g., NIS2, GDPR). Knowledge of sector-specific regulations (e.g., GTelG, MDR) is an advantage.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Job Locations
Topics that you deal with on the job
This is your employer
NÖ Landesgesundheitsagentur
We are standing by the people of Niederösterreich as companions through all stages of life - from young to old, and providing everything they need from one source.
Description
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Public Service, Unions, Healthcare, Social Sector
IT risk manager / information security manager
- Salary
- from 3.783 € Gross/Month
- Location
- St. Pölten
- Working Model
- Onsite
- Diversity
- Open for all genders
