Lead cybersecurity initiatives in a critical energy infrastructure environment. Develop and enforce security policies and governance. Ensure compliance with ISO 27001:2022 and other frameworks.
Key Highlights
Technical Skills Required
Benefits & Perks
Job Description
Job Title: Information Security Manager – Energy Sector (Full remote, occasional travel)
Our client operates at the heart of Europe’s electricity transmission system, coordinating and securing energy flows across multiple countries. They play a crucial role in ensuring reliable electricity delivery, supporting Transmission System Operators (TSOs), and contributing to the stability of the European power grid.
Role Overview:
We are looking for an experienced and hands-on Information Security Manager to lead and oversee cybersecurity, governance, and risk management initiatives within a critical energy infrastructure environment. This is an exciting opportunity to work at the intersection of operational security, compliance, and strategic cybersecurity in a sector where reliability and resilience are paramount.
Key Responsibilities:
- Develop, maintain, and enforce security policies and governance in line with ISO/IEC 27001:2022.
- Ensure compliance with ISO 27001:2022, NIS2, ISAE 3000 (Type 1/2), OPDE/MVS, and other relevant frameworks.
- Manage cybersecurity risk and maintain audit readiness.
- Oversee supplier security, hosting, and data-center security.
- Drive operational security including access control, monitoring, incident response, and vulnerability management.
- Act as the main security contact, reporting regularly to management, steering committees, and external auditors.
- Develop and maintain ISMS documentation, policy lifecycle management, and continuous improvement initiatives.
- Support Security Operations Center (SOC) development and harmonization of monitoring requirements.
- Lead user training, awareness programs, and publication of security materials.
- Prepare for and manage internal and external audits, ensuring corrective actions are executed.
Required Skills & Experience:
- Expertise in ISO 27001:2022, NIS2, ISAE 3000, OPDE/MVS, and other security frameworks.
- Strong knowledge of cybersecurity risk management, operational security, and audit processes.
- Experience in supplier security, ITSM process evaluation, and hosting/data-center security.
- Familiarity with vulnerability management and monitoring tools.
- Proficiency in SharePoint Online.
- Knowledge of energy sector operations, including ENTSO-E, TSOs, and RCCs, is a plus.
- Analytical, problem-solving, and strong communication skills.
- Proven hands-on orientation, integrity, and responsibility.
- Relevant education/certifications in cybersecurity.
- 5+ years in security management roles, ideally in multi-supplier, documentation-heavy environments.
- Fluency in English.