The Department Integrated Management System (IMS), which is directly assigned to the CEO, is responsible for all management systems at Anexia with group-wide policy and method competence. The IMS team is primarily responsible for the further development of the ISO 27001 certified Information Security Management System (ISMS) and the ISO 9001 certified Quality Management System (QMS). In addition, the team is responsible for the areas of Business Process Management, Risk Management, Business Continuity Management and Data Protection as well as internal audits and certifications.


As Information Security & Business Continuity Manager in the IMS team, you’ll primarily be responsible for the creation and implementation of group-wide information security frameworks.
Based on this, you’ll develop and gradually implement an appropriate target group-oriented security awareness program in coordination with the Group Information Security Officer (ISO) and HR.
In this role, you’ll act as the interface between strategic information security and operational IT security in a wide variety of departments.
Another key task in your new role will be the planning and implementation of group-wide business continuity management (BCM).
Your tasks here will include the introduction of methods according to best practice standards (e.g. ISO 22301), the elaboration of internal regulations, linking these with IT service continuity management and business continuity management, the conducting of and provision of support for pertinent business impact and risk analyses, and participation in crisis management work. Together with your colleagues in the IMS department, you’ll regularly review the degree of implementation and effectiveness of the existing management systems through internal audits and provide support for external and certification-relevant audits.


  • Proven experience in information security and sound knowledge of the ISO/IEC 27001 series of standards, IT-Grundschutz (BSI) (IT baseline protection approach from the German Federal Office for Information Security), EU NIS-RL (2016/1148), NISG (AT), and BSIG (DE)
  • Good knowledge of business continuity (e.g. ISO 22301, BSI 100-4), IT service continuity, and business continuity management
  • Professional experience in IT security an advantage
  • Knowledge of relevant norms and audit standards (e.g. ISO 27017/18, HIPAA, EuroPriSe, SOX, PCI DSS, BSI IT-Grundschutz, ISAE 3402 / SOC 2 / Type 2 / AICPA) desirable
  • System knowledge of or experience with Atlassian products (Jira, Confluence) advantageous
  • Structured approach, a talent for organization, and good communication skills in an international environment
  • Independent approach to work, ability to take responsibility and work well under pressure, a team player, and flexible 
  • Excellent spoken and written German and English


Anexia grew up as a family, and with our growth strategy, we intend to keep it that way. We like to take responsibility, respect one another, and we know that we can achieve whatever we put our minds to. We look after Anexia, and Anexia looks after us. Enthusiasm, experience, and competence count, so you can expect a fair salary and numerous benefits.

We are more than just a workplace. Therefore, we offer our employees many benefits (which partly depend on your position and location): good transport connections and flexible working hours. Period. Not to mention further training, a mentoring program, free parking, a mobile phone and notebook for work and private use, snacks and drinks, company cars, employee events, a fun corner, ...


Marina Maros
Marina Maros

HR Business Partner

Location: Klagenfurt, Vienna, Graz

Working hours: full time

Starting salary: : min. 42.000€

To the online application form