The Information Security Governance Product Owner (m/f/d) is responsible for the delivery of the governance product and services: governance service: design, implementation and continuous improvement of the global Information Security Framework (ISF), aligning it with the evolving business needs, regulatory environment, industry standards and customer requirements. GRC platform service: oversee delivery of the GRC technology platform, and customer security assurance service. 

Creating passion: your responsibilities Information Security Framework (ISF) Management: Design, implement, and maintain the ISF: policies, standards, procedures, and control baselines, aligned to business needs, regulatory obligations (e.g. NIS2, GDPR), industry standards (e.g. NIST CSF, ISO 27001), and customer contractual requirements Regulatory Integration & Control Framework Alignment: Maintain inventory and traceability of external obligations (e.g. NIS2, GDPR, ISO/IEC 27001, IEC 62443) and customer requirements, integrating these into the ISF components (policies, controls) Governance Operations & Executive Engagement: Oversee ISF governance processes, including stakeholder coordination, approval workflows, and documentation GRC Platform Service Delivery:Oversee and deliver the GRC platform service to support governance, compliance, risk management, customer assurance and other Corporate Information Security products and service’s needs Customer Security Assurance Service Delivery: Oversee and deliver the customer security assurance services to support business teams in agreeing and complying with customer security requirements Governance Metrics & Reporting: Design key risk and performance indicators, dashboards and report on the governance product and services relevant for management at the Liebherr group, divisions and companies Contributing your strengths: your qualifications Bachelor’s/Master’s in Cybersecurity, Computer Science, or related field 10+ years of working experience in IT, Cybersecurity Governance or related roles 5+ years of working experience in global organizations including Governance, GRC technology and customer security assurance services delivery Following certificates are preferred: CISSP, CRISC, CISM, GSLC Excellent written and verbal communication skills in English, German is a plus Proven expertise in designing and maintaining information security governance frameworks using industry standards e.g. NIST CSF, ISO/IEC 27001, IEC 62443 and requirements in security regulations e.g. NIS2, GDPR, Defense contracting Ability to lead multi-stakeholder governance processes across global business units and ensure documentation is structured, endorsed, and maintained Experience in applying agile principles (e.g. iterative planning, continuous improvement, stakeholder collaboration) to the delivery and evolution of governance services, frameworks, or organizational processes Experience in owning and evolving enterprise GRC platforms to support compliance, risk, and governance services Strategic thinking combined with a pragmatic execution mindset, especially when aligning governance with operational realities Highly desirable: experience in product ownership and service delivery using SAFe (Scaled Agile Framework) or similar agile methodologies Our commitment to you: your benefits

As an internationally successful family business, the Liebherr Group offers you a secure job, a unique variety of tasks and exciting development opportunities. Become part of our strong team today and get to know the Liebherr Group as a reliable partner. Profit from these benefits:

Attractive salary and social benefits Flexible and hybrid working Freedom for creative work  Safe and secure workplace Individual development and training opportunities  Meal voucher Life and accident insurance Private health insurance Christmas and holiday bonus payments

Please only use the online application option.
Please note that we do not accept applications via recruitment agencies for this position.

Have we awoken your interest? Then we look forward to receiving your online application. If you have any questions, please contact Ivana Kiesewetter.

One Passion. Many Opportunities.

The company

Liebherr is a family-run technology company that is not only one of the largest construction machinery manufacturers in the world, but also offers high-quality, user-oriented products and services in many other areas. The Group employs nearly 50,000 people in more than 140 companies on all continents.   

Location

Liebherr IT Service Center Ibérica S.L.

C/ Aluminio 6-8

19200 Azuqueca de Henares

Spain (ES)

Contact

Ivana Kiesewetter

ivana.kiesewetter@liebherr.com