Develop, issue, review and maintain physical and logical security documentation in alignment with applicable standards and the security policies of AUSTRIACARD HOLDINGS
Establish and implement robust security processes to safeguard organizational as assets.
Conduct regular internal physical and logical security audits and risk assessments to ensure compliance with regulations and monitor adherence to security protocols.
Organise and support external security audits, certifications, and assessments, ensuring timely remediation of findings.
Promptly report any compliance discrepancies, breaches of duty, or criminal activities to the appropriate authorities, and coordinate investigations and corrective actions.
Provide regular reports on the status of security measures and identify potential risks.
Oversee identity and access management, including user provisioning, authentication, authorization, and privilege management; oversee access control systems, surveillance, intrusion detection, perimeter security, visitor management, and secure area controls.
Monitor vulnerabilities and security events; lead incident response, crisis management, and root-cause analysis.
Collaborate with other departments to integrate security into all aspects of the business, ensuring a holistic approach to risk management, in accordance to the Group policies and business needs.
Lead security awareness training programs covering both physical and logical security for employees to foster a culture of security within the organization.
Track emerging threats, define security strategy, manage the security budget, and drive strategic investments.
Ideal Profile
Education - Bachelor’s or Master’s degree in Information Security, Cybersecurity, Risk Management, Engineering, or related field.
5–10+ years of progressive experience in information security, physical security, and risk management, with at least 3–5 years in a leadership role.
Relevant certifications - Physical security, IT governance, audit, business continuity
Proven track record in:
Developing and maintaining security policies and documentation.
Conducting internal/external audits and risk assessments.
Managing IAM (provisioning, authentication, authorization, privilege management).
Overseeing physical security systems (access control, CCTV, intrusion detection).
Leading incident response, investigations, and remediation.
Managing security budgets and external providers.
Core Competencies
Strong knowledge of security frameworks (ISO 27001, etc.).
Governance, Risk & Compliance (expertise.
Incident detection, response, and root-cause analysis.
Crisis management and emergency response coordination.
Security monitoring and vulnerability management.
Soft skills
Strategic thinker with business-oriented mindset.
Strong reporting and stakeholder management skills.
High integrity, discretion, and accountability.
Ability to foster a company-wide security culture.