Share this Job

IT Security Manager m/f/t

RWE Supply & Trading GmbH, IT Security, Essen, Germany (DE) 

To start as soon as possible, Full time, Permanent


As an IT Security Manager you will assist the IT Security Operations Team Lead by effectively identifying, quantifying and managing cyber vulnerabilities across the RWE Group.


This role will be responsible for the development and improvement of processes and controls and setting best practice standards whilst ensuring the implementation and management of threat and vulnerability capabilities. As part of this role you will be expected to work closely with the appropriate IT teams and Business Stakeholders to ensure appropriate remediation plans are defined and implemented.


Further responsibilities will include working with IT teams in order to reduce vulnerabilities, as well as spotting trends and patterns across the threat landscape.


Your future plans

  • Develop, implement and manage the necessary Threat and Vulnerability Management (TVM) policies, standards and procedures which will align with our new Target Operating Model
  • Define processes for the application of the security hardening policies based on CIS Benchmarks and manage the associated lifecycle
  • Work closely with the MSSP and ensure threat management encompasses external and internal threat sources, helping to identify current and future threats to the Group. Ensure active threats and their associated attack vectors are mitigated through vulnerability management
  • Support the assessment of identified vulnerabilities and prioritise remediation based on risk and exposure and track remediation activities to completion, validating the effectiveness in mitigating the risk
  • Manage penetration testing including RFP process, scoping, communicating internally, and working closely with the Pen testers, acting on output from testing and co-ordinating and managing the necessary corrective actions
  • Support incident response and investigation of security incidents including root cause analysis
  • Support Group Security in the development of communications to promote and maintain awareness of current threats and vulnerabilities across all business functions


Your powerful skills

  • Degree level in Computer Science, Maths, Science or an IT Security related discipline or an appropriate industry related qualification
  • Certified in Information Systems Security Professional (CISSP) or Certified in Ethical Hacker (CEH) would be beneficial
  • Extensive experience of implementing, monitoring and improving the threat and vulnerability management service of a large energy trading or financial services organisation
  • A high level understanding of security architectural design and network design
  • Detailed knowledge of system security vulnerabilities and remediation techniques
  • Knowledge of and ability to manage Windows, Network Device, Database, Middleware, and Application vulnerabilities
  • Good Knowledge of Cloud Platforms (AWS and Azure)
  • Good Knowledge of Scripting Languages such as Python and Powershell
  • Understanding of Windows and *NIX Operating Systems as well as of Virtualisation Technologies e.g. VMWare
  • Strong analytical and problem solving skills
  • Good conflict management skills
  • Excellent written and verbal communication skills in English


Benefits you can rely on

At RWE, you will find all the advantages of a large technology group. And some merits that are even more crucial: openness and real team work. For we are open to the future and are building on the strengths of each and every individual. We value his/her work and opinion; we listen, pursue active ideas management and engage in direct exchanges. Respect, appreciation and mutual trust are the hallmarks of cooperation within the international RWE team.


attractive remuneration (40x40)  flexible working times (40x40)   training/human resources development (40x40)  Free parking (40x40) 


Apply now with just a few clicks: ad code 21660

Any questions? Janina Müller (Recruiting), T: +49 201 5179-1241, Natasha Ledingham (specialist department), T: +44 1793475058

We look forward to meeting you!


We value diversity and therefore welcome all applications, irrespective of gender, disability, nationality, ethnic and social background, religion and beliefs, age or sexual orientation and identity.

Of course, you can find us on LinkedIn, Facebook, Twitter and Xing, too.


RWE Supply & Trading is the interface between RWE and energy markets around the world. Around 1,600 employees from 40 nations trade electricity, gas, commodities, and CO₂ emission certificates. Aided by precise market analyses and guided by high customer orientation, they create innovative Energy supply solutions as well as concepts for risk management in industrial companies. The trading company also ensures the commercial optimisation of the RWE power plants, operates storage for natural gas, and markets the renewable energy generated by RWE Renewables.

Job Segment: Social Media, Information Systems, Risk Management, Manager, Computer Science, Marketing, Technology, Finance, Management