Process Specialist Information Security

Process Specialist Information Security

Evotec

Hamburg, Verona or Toulouse

Key Responsibilities

• Ensure the smooth, effective, and measurable operation of the Global Information Security organization
• Support the CISO (SVP, Head of Global Information Security) in maintaining the structure, governance, and oversight required for an efficient, audit‑ready information security management organization
• Support operational processes within Global Information Security, identify impediments and blockers, and propose and implement effective solutions
• Track and drive actions to ensure timely and effective completion of assurance activities such as open issues, nonconformity remediations, audit finding remediations, risk mitigation actions, and KPI measurements
• Facilitate planning and tracking cycles including budget planning and tracking, project and resource planning, progress monitoring, and regular reporting to committees
• Orchestrate complex activities involving multiple stakeholders, such as internal and external security audits, risk and readiness assessments, and committee meetings
• Maintain the information security documentation ecosystem, ensuring consistent standards and effective management of controlled documents, records, templates, knowledge repositories, committee minutes, and other governance artifacts
• Drive continuous improvement by assessing process maturity, proposing enhancements, and optimizing tooling to ensure usability and alignment with Evotec Group requirements
• Act as a central point of contact for the Evotec Information Security Community of Practitioners and support knowledge‑sharing initiatives across the Group
• Contribute hands‑on to high‑priority projects within the Information Security organization based on strategic priorities and individual expertise

Qualifications

• Academic degree in Business Administration, Information Technology, or a related field, or equivalent professional experience
• Working knowledge of Information Security, Cybersecurity, and Assurance concepts such as audits, risk management, continuous improvement, and document control
• Experience tracking and managing complex, interdependent processes and tasks (e.g., nonconformity remediation, risk mitigation plans, complex project plans); formal project management experience is a plus
• Experience maintaining structured documentation environments such as controlled document repositories, knowledge bases, and wikis
• Proven ability to coordinate and facilitate interdependent activities across different stakeholders, functions, sites, and cultures
• Good understanding of tools and methods for tracking, measuring, and reporting progress, such as ticketing systems, workflow automation, and collaboration platforms
• Ability to interpret dashboards and data sources, understand data flows, and perform analyses to support reporting and continuous improvement
• Strong communication skills with the ability to engage diverse target groups across hierarchy levels and cultures
• Fluent written and spoken English is required; German, French, and/or Italian language skills are a plus
• Relevant certifications such as PMP, CISM, or CISSP are a plus