An employee stands wearing a helmet and protective clothing in one of Uniper's power plants in Sweden.

Group Information Security Risk Manager (f/​m/​d)

Calendarimmediately

ClockHybrid, Full-time, Unlimited

GlobeDüsseldorf

Group Information Security Risk Manager (f/m/d)

Location: Düsseldorf, North Rhine-Westphalia, Germany

At Uniper, we are pro-actively transforming the world of energy whilst at the same time ensuring security of energy supply. As an internationally operating company, we work in very diverse teams with the greatest possible working time flexibility for our employees. Our corporate culture is characterized by equal opportunities, mutual appreciation, and respect. With us, you will be able to develop new business models, work on technological solutions for a modern, sustainable, and future-oriented energy supply as well as pro-actively help to shape changes. Interested? Then we will look forward to meeting you!

Your responsibilities

We are seeking a highly skilled Group Information Security Risk Manager to join our Group Information Security team. You will be responsible for risk management and ensuring regulatory compliance (including NIS2, DORA, Cyber Resilience Act, ISO/IEC 27001, and the NIST Cybersecurity Framework). As a central point of contact for information and cyber risks, you will advise and oversee the business lines and ensure that all information security risks are appropriately managed. This role reports directly to the CISO and requires at least 5+ years of experience in information security and risk management, ideally in critical infrastructure or the energy sector.

Key Responsibilities:

  • Governance: Develop the information security risk framework (policies, guidelines, processes). Independently review the effectiveness of security controls and measures implemented by the first lines and initiate corrective actions where necessary.
  • Risk Management: Identify, assess, and monitor information and cyber risks across the entire Uniper Group. Develop risk treatment plans and oversee the implementation of mitigation measures.
  • Compliance: Ensure compliance with all relevant legal and regulatory requirements (e.g., NIS2 Directive, DORA, KRITIS etc.) as well as internal policies and industry standards (ISO/IEC 27001, NIST-CSF).
  • Management Reporting: Prepare and present regular reports on the information security status and risk profile to top management and the Board of Management. Develop clear KPI/KRI dashboards to visualize trends and progress in risk and compliance. Escalate critical risks to the CISO and, if necessary, to the Board of Management.
  • Technical Risk Management: Conduct and support technical risk analyses and security assessments (e.g., threat and vulnerability assessments, risk analyses for various services and systems). Evaluate new technologies, systems, and changes (change risk assessments) from an information security perspective.
  • Third-Party Risk Management: Assess security risks related to service providers and partners. Ensure external partners meet security and compliance requirements through contract reviews, security evaluations, and ongoing monitoring of critical vendors.

Your profile

  • University degree in (business) informatics, information security, engineering, or a comparable field. Additional certifications in information security/risk management (e.g., CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor) are desired.
  • At least 5 years of relevant experience in information security, IT risk management, or IT compliance. Experience in a corporate environment or with critical infrastructure (KRITIS), preferably in the energy sector, is desirable.
  • Regulatory Expertise: In-depth knowledge of relevant cybersecurity laws and regulations: e.g., EU NIS2 Directive, Digital Operational Resilience Act (DORA), Cyber Resilience Act (EU regulation for digital products), national IT Security Act/BSI Act, and common standards/frameworks (ISO/IEC 27001/27002, NIST-CSF, BSI IT-Grundschutz). Proven experience in implementing these requirements in a corporate setting.
  • Information Security Expertise: Deep knowledge of information security methods and techniques: from risk analysis methodologies (e.g., ISO 27005) and vulnerability management to business continuity management (ISO 22301) and incident response. Familiarity with cloud security principles and basic understanding of OT security in industrial environments.
  • GRC and Process Knowledge: Experience in using governance, risk & compliance (GRC) tools or ISMS platforms. Experience with risk analysis tools and ticketing systems is a plus.
  • Fluent in both German and English (spoken and written). The role requires communication with German-speaking teams and authorities as well as reporting in an international corporate environment.
  • Experience working with international teams or projects is an advantage. Cultural awareness and the ability to roll out global security standards across the group are important.

Job ID:

88868

Location:

Düsseldorf, Germany

Type of contract:

Unlimited

Working model:

Hybrid, Full-time, Unlimited

Start date:

immediately

Do you have any questions?

If you have any questions, please feel free to contact us by e-mail and we will get back to you:

career@uniper.energy
Top Employer Germany 2025

What makes Uniper stand out as an employer

  • Training

    Further education

    With a mix of digital and analog learning formats and topic-specific communities, we promote your personal and profossional development and lifelong learning.

  • Award

    Coachings and Mentoring

    Experienced specialists and managers are happy to support you in strengthening your skills and advancing your career development.

  • Bubble

    Open feedback culture

    Performance discussions, 360-degree feedback and employee surveys will help you and the company move forward, strengthen our collaboration and give you room to contribute your ideas.

  • Health

    Health care

    Safety and well-being are our top priorities. That's why we offer you regular free preventive medical checkups as well as a variety of learning impulses on occupational safety, health and well-being, and support programs.

  • Ball

    Sport and Fitness

    With our online exercise courses, sponsorship of your participation costs in central sports events and a large sports community, we offer you a healthy working environment.

  • Canteen

    Healthy nutrition

    You can enjoy a wide range of healthy and balanced meals in our canteen. In addition, you can participate in nutrition programs.

  • Fonds

    Insurance and coverage

    We take care of you and offer you a wide range of coverage beyond the legal requirements with our company pension plan, accident insurance, company health insurance and continued salary payments in the event of illness.

  • Money

    Financial benefits

    We pay capital-forming benefits and offer you a wide range of financial benefits through our corporate benefits program

  • Smiley

    Work Life Balance

    We support you in balancing your private and professional life through flexible working time models, job sharing, sabbaticals and extensive offers in the area of child care and nursing.

  • Car

    Free parking spaces

    We provide you with free parking spaces.

  • Bicycle

    Job bike leasing

    We offer you the option of leasing a bicycle through deferred compensation with financial benefits.

The benefits may vary slightly depending on location and role. You can find a complete overview of the benefits here:Benefits

Get to know your future colleagues

Valentina

EVP Operational Excellence

At Uniper “treating everyone in a fair way”, and “making everyone feel included” are serious topics. This is why we regularly seek feedback from our employees, we listen to them, and we make changes so that we can get closer and closer to our vision of DEI.

Valentina - EVP Operational Excellence

Thomas

Head of ETRM department

I was excited to join Uniper as it a give me the opportunity to be part of a large, complex and dynamic Trading Organization. The company trades a lot of different commodities in many markets with all their uniqueness, which ultimately requires many different IT tools and solutions. I enjoy working with traders and all the supporting functions in such a challenging environment.

Thomas - Head of ETRM department

Navya

Lead Business Analyst

My passion is driven by the excitement of learning something new every day and a strong sense of pride supporting our Uniper business growth & Strategy. This is enhanced by the presence of a great team around me, whom I can always rely on for support.

Navya - Lead Business Analyst

Mithun

Lead - Strategic Endur Solutions

Each day excites me with new challenges by driving various Strategic IT initiatives for our CCO Trading Business and accelerating the energy transition by decarbonising our portfolio. My motto: Entrepreneurship is trait that you live each moment! At Uniper, I can constantly challenge status quo and shape the environment around me.

Mithun - Lead - Strategic Endur Solutions
About Uniper
Diversity
FlexWork
Job Sharing

Transforming energy security through expertise and commitment

Uniper is a European energy company with a global reach that makes a decisive contribution to security of supply and energy transformation.  We work in very diverse teams and offer our employees as much flexibility as is possible.

Equity, mutual appreciation and respect are the core of our corporate culture. At our company you will have the opportunity to shape new technologies, work on solutions for a modern and future-oriented energy supply and actively design change processes.

360_tour.webp

Düsseldorf

Virtual tour of our offices in Düsseldorf

With our virtual reality tour, you can experience Uniper from a completely new perspective. Our Düsseldorf offices can be viewed in detail without being on site. You can also get to know your colleagues and the working environment virtually. A highlight of the tour is built right into the beginning: a video from a bird's eye view impressively shows how attractive our location in the Medienhafen is.

Düsseldorf_Standort_1.webp

Düsseldorf

Uniper has been based at our headquarters in Düsseldorf's Media Harbour since 2019. Our central office consists of the two buildings Caprocorn and Float, which are connected by a walkway to form a single unit.

Düsseldorf_Standort_2.webp

Düsseldorf

Uniper has been based at our headquarters in Düsseldorf's Media Harbour since 2019. Our central office consists of the two buildings Caprocorn and Float, which are connected by a walkway to form a single unit.

Düsseldorf_Standort_3.webp

Düsseldorf

Uniper has been based at our headquarters in Düsseldorf's Media Harbour since 2019. Our central office consists of the two buildings Caprocorn and Float, which are connected by a walkway to form a single unit.

Düsseldorf_Büro_1.webp

Düsseldorf

On the office floors, the modern furnished meeting areas and lounges are located in the centre of each floor and our colleagues work separately from the passage areas, each with window fronts. All workstations have modern equipment and height-adjustable desks.

Düsseldorf_Büro_2.webp

Düsseldorf

On the office floors, the modern furnished meeting areas and lounges are located in the centre of each floor and our colleagues work separately from the passage areas, each with window fronts. All workstations have modern equipment and height-adjustable desks.

Düsseldorf_Büro_3.webp

Düsseldorf

On the office floors, the modern furnished meeting areas and lounges are located in the centre of each floor and our colleagues work separately from the passage areas, each with window fronts. All workstations have modern equipment and height-adjustable desks.

Düsseldorf_Café_1.webp

Düsseldorf

We offer many services at the location that positively support everyday working life. These include an IT walk-in centre, a fitness studio, an underground car park with free parking spaces for cars and an extra garage for bicycles, including showers. For a balanced diet, there is a canteen as well as a café and a deli with fruit and healthy snacks, which are also open to the public.

Düsseldorf_Café_2.webp

Düsseldorf

We offer many services at the location that positively support everyday working life. These include an IT walk-in centre, a fitness studio, an underground car park with free parking spaces for cars and an extra garage for bicycles, including showers. For a balanced diet, there is a canteen as well as a café and a deli with fruit and healthy snacks, which are also open to the public.

Düsseldorf_Café_3.webp

Düsseldorf

We offer many services at the location that positively support everyday working life. These include an IT walk-in centre, a fitness studio, an underground car park with free parking spaces for cars and an extra garage for bicycles, including showers. For a balanced diet, there is a canteen as well as a café and a deli with fruit and healthy snacks, which are also open to the public.

Application process

Step 1 - Online application

Step 1

Online application

Have you found a suitable job posting? Then you can apply online right here. The application process is very simple and only takes a few minutes. Once we have received your application successfully, you will receive confirmation by e-mail immediately afterwards.

Your questions. Our answers.

Do you have any questions?

Do you have any questions?

Our recruiting team will be happy to assist you via email. Please submit your application exclusively through our online portal – unfortunately, we cannot consider applications sent by email. As long as the position is listed on our careers page, we look forward to your interest and application!

Similar Jobs