View job here

Introduction:

The ARGO-HYTOS Group is a globally operating provider of hydraulic system solutions. With around 1,000 employees and over 75 years of experience in control technology, regulation, and filtration, ARGO-HYTOS continues to set new standards in the hydraulics industry. The ARGO-HYTOS Group operates production companies in Germany, the Czech Republic, India, China, Poland, Brazil, and the USA, and is active worldwide through numerous international sales subsidiaries. Since August 2022, ARGO-HYTOS has been part of the Voith Turbo Division within the Voith Group.

For our Group IT Team we are currently seeking a Security & Compliance Engineer (m/f/d)

In this role, you will help ensure that information security and compliance are not only documented but also implemented and operated globally. You will combine ISMS/compliance activities with hands-on security engineering, especially in the Microsoft / Entra environment. You will work closely with global IT colleagues, the Cyber Defence Center, and business stakeholders.

Your scope of responsibilities includes:

  • Support and continuously improve the ISMS, including compliance activities, audit preparation, evidence collection, risk tracking, and remediation follow-up.
  • Translate security and compliance requirements into practical technical controls and verify their effectiveness.
  • Implement and operate core security controls in the Microsoft / Entra environment, including MFA, Conditional Access, role-based access, privileged access practices, access reviews, endpoint security, and hardening.
  • Coordinate operational security activities such as Cyber Defence Center investigations, vulnerability and patch management, incident response, backup/restore security, ransomware resilience, and restore-test evidence.
  • Integrate security into IT operations, change/release processes, and service management, and report the security posture using relevant KPIs such as MFA coverage, device compliance, patch status, critical risks, and restore-test success.

Your Profile:

  • Hands-on experience in IT security, M365/Entra administration, endpoint management, IT operations, or a comparable technical role.
  • Good understanding of Microsoft security concepts, especially identity and access management, endpoint protection, and cloud security.
  • Basic to solid understanding of ISO 27001 concepts such as risk-based controls, policies, evidence, and audit readiness.
  • Technical knowledge in several areas such as IAM, endpoint security, secure access, vulnerability management, logging/SIEM, or backup/recovery.
  • Proactive, structured, and pragmatic working style, with the ability to document clearly, communicate across IT and business, and follow topics through to closure.