Remote IT Admin: Security & ISMS Specialist

As an IT Administrator with a focus on Security & Compliance, you support the development, implementation, and continuous improvement of our Information Security Management System (ISMS). Your focus is on the operational execution of technical and organizational security measures, documentation, and ensuring compliance with internal and supplier‑related security requirements. Together with our IT team, you help keep our IT landscape secure, reliable, and audit‑ready.

Job Description

IT Admin – Security focused (M.F.D). Full Remote (de).

Responsibilities

• Support the development, implementation, and continuous improvement of our Information Security Management System (ISMS)
• Implement and document information security and compliance measures in alignment with standards such as ISO/IEC 27001
• Support the evaluation and implementation of IT security requirements for suppliers and external service providers
• Create, maintain, and improve security policies, procedures, risk assessments, and technical documentation
• Conduct and follow up on security assessments, vulnerability scans, and technical audits
• Support audit preparation, evidence collection, remediation tracking, and compliance activities
• Manage and monitor security tools, firewalls, and endpoint/infrastructure security solutions
• Support patch management and vulnerability management processes
• Assist with hardening and securing servers, networks, cloud environments, and endpoint systems
• Manage and maintain IT systems including servers, workstations, and cloud environments
• Support incident response as well as backup and disaster recovery processes
• Automate recurring operational and security‑related tasks using scripting languages such as Python, Bash, or PowerShell

What you bring

• Experience in IT administration, IT security, IT compliance, or information security management
• Knowledge of Information Security Management Systems (ISMS) and common security frameworks such as ISO/IEC 27001
• Experience with infrastructure, network, server, and cloud administration
• Understanding of vulnerability management, system hardening, and security monitoring
• Experience with firewalls, endpoint security, IDS/IPS, or similar security technologies
• Structured and detail‑oriented working style with strong documentation skills
• Strong English communication skills, both written and spoken (>= B2)
• Degree in Computer Science, Information Security, Business Informatics, or a related field
• Experience with scripting and automation (Python, Bash, PowerShell)

Nice to Have

• Experience supporting audits and certification processes related to ISO/IEC 27001
• Experience with supplier security assessments and third‑party compliance requirements
• Knowledge of open‑source software licensing and compliance
• Experience with vulnerability scanning tools
• Familiarity with additional frameworks or standards such as BSI Grundschutz or NIS2