Senior Project Manager (m/w/d) Information Security & Regulatory Compliance

About

We ensure a better climate. In every home and our environment. As a successful family business, we have lived this claim for over 150 years. We are one of the world's leading manufacturers of heat pumps, digital service solutions, and efficient gas heating devices, providing energy-efficient solutions. Sustainability is found everywhere at the Vaillant Group. In the office, at production sites, and on the go. Around 16,000 employees from over 70 countries are committed to this every day. As an international team, we take responsibility – for our future and that of our planet. We promote your personal development so that you can act with passion and we can work together for a better climate. Become part of the Vaillant Group and shape the future of heating with us!

Responsibilities

In your role as Senior Project Manager (m/f/d) Information Security & Regulatory Compliance, you will take on central responsibility for our company's cyber, product, and production security. You will ensure that regulatory requirements – particularly those of the Cyber Resilience Act (CRA) and NIS2 – are translated into robust, practical processes and technical measures that sustainably protect our production landscapes, networked devices, and IT/OT infrastructures.

• End-to-end responsibility for the current implementation of the Cyber Resilience Act (CRA) across the entire company
• Translation of regulatory requirements into practical roadmaps, security processes, policies, and control mechanisms
• Coordination of all relevant departments, especially Cyber Security, IT Architecture, Product Development, Compliance, Legal, and Quality Management
• Creation and management of roadmaps, implementation paths, and maturity concepts with a view to technical and organizational dependencies
• Conducting gap and risk analyses as well as conformity assessments, including deriving measures and prioritizing by risk impact
• Regulatory monitoring: Assessment of new requirements and their impact on systems, processes, and products
• Representing the company towards authorities, testing bodies, and certification bodies, including preparation for audits
• Transparent communication of the status quo to senior management, project committees, and technical stakeholders
• Central role in the Group Information Security Office under the CISO to shape the security level of the entire corporate group

Requirements

What makes us successful together:

• A completed degree (Bachelor or Master) in IT, Business Informatics, Cyber Security, Engineering, or a comparable qualification – ideally with further training and certificates in information security
• Well-founded / several years of professional experience in information security and its regulatory framework
• Further professional experience: Experience in project management and international environments with project sizes >10 people and budget responsibility, as well as experience in the IT and Cyber Security environment (including CRA, NIS2, NIST CSF, ISO 27001, and IEC62443)
• Strong understanding of: Product and OT Security (Embedded, Firmware, Software, Mobile Apps)
• The ability to translate complex regulatory requirements into pragmatic technical measures
• Work style & language: Reliable, precise, independent, and goal-oriented work style, as well as adequate communication in fluent English and German, and intercultural competence

Benefits

What you can count on:

• Flexible working hours: Shape your workday according to your needs and those of your customers. We trust you and offer flexible working hours within our common goals
• Mobile working: We offer our employees the possibility of mobile working; furthermore, there is also the option to work remotely from a country within the European Union
• An above-tariff gross annual salary (fixed and bonus) ensures an attractive remuneration package in the management area
• Development: Our development programs GROW, EVOLVE, LEAD, and EXCEL prepare potential candidates for the next career step
• Electric charging stations: Charge your e-car in the company parking lot at attractive conditions
• Company restaurant: Johann's offers changing hot meals for lunch and dinner, as well as snacks, fruit, drinks, and a barista bar
• Think ahead for the future and benefit from our company pension scheme and occupational disability insurance at attractive conditions (without annoying waiting periods and health questions)

Contact

We promote equal opportunities and reject all forms of discrimination. We value the uniqueness of every personality and expressly invite all people to apply.

Your contact for questions: Michelle Fuhrmann Tel.: +49 2191 18-2601 career.vaillant-group.com