Keenfinity

professional communication and security solutions

ChiefInformationSecurityOfficer(CISO)

Ovar, Portugal FULL TIME

The Brief

“Chief Information Security Officer (CISO) at Keenfinity. Skills: IT security strategy, security governance, risk management, divestiture security, security due diligence, security operations oversight, ISMS & compliance. Define and own Keenfinity's IT security strategy for the divestiture period. Establish and maintain the IT security governance framework”

What You'll Achieve.

security strategy for the divestiture period; security readiness at every divestiture phase gate; security programme credibility in due diligence; ISO 27001 ISMS remains certified and audit-ready; regulatory compliance across all active jurisdictions

Industry & Context.

professional communication and security solutions

Problems you'll solve

risk appetite definition; security risk status; security implications of cost reduction initiatives; security separation; security requirements checklist; security architecture; security due diligence preparation; incident response protocols; escalation thresholds; security risk review; material compliance gaps

Eligibility Requirements

regular travel to Straubing (security team), Munich HQ and BU locations, All our positions are open to people with disability

What They're Looking For.

Must Have

8+ years in IT security leadership, 3+ years at CISO or Head of Security level, Demonstrable experience with M&A security — either as the security lead on a carve-out, divestiture or acquisition, or as a senior security advisor in a transaction context, Deep expertise in at least two of: ISO 27001 / ISMS programme management, IAM architecture (Active Directory / Entra ID), SOC / SIEM operations, cloud security (Azure preferred), Proven ability to prepare and present security due diligence packages for corporate, Executive-level communication: able to translate complex security risk into language that resonates with a CFO and PE investor — without dumbing it down, Fluent German and English — both languages will be used daily, Based in regular travel to Straubing (security team), Munich HQ and BU locations

Nice to Have

CISSP, CISM or equivalent senior security certification, Experience in industrial technology, manufacturing or multi-site operational environments, Familiarity with NIS2 requirements and their practical implications for an international mid-market company, Background in PE-backed companies or experience working to PE investor reporting, sitting in buyer due diligence conversations is a differentiator

What You'll Do.

Define and own Keenfinity's IT security strategy for the divestiture period

Establish and maintain the IT security governance framework

Report security risk status monthly to Director IT

Produce quarterly security dashboards for Triton / CFO

Advise the Director IT STG on security implications of cost reduction initiatives

Hold formal security sign-off authority at every BU divestiture phase gate

Define the security requirements checklist for each exit

Coordinate with the Enterprise Architect to ensure security architecture is embedded in every separation blueprint

Lead security due diligence preparation for each BU sale

Act as the primary security contact for buyer due diligence

Provide strategic direction to the SOC Lead

Provide strategic direction to the IAM Lead

Provide strategic direction to the ISMS Manager

Review and approve major security architectural

Maintain the security architecture principles document

Ensure Keenfinity's ISO 27001 ISMS remains certified and audit-ready

Own the security risk register at the enterprise

Chair the security risk review with the ISMS Manager and the Director IT STG quarterly

Ensure regulatory compliance across all active jurisdictions

Flag material compliance gaps to Director IT STG

How You'll Work.

Team & Collaboration

Coordinate with the Enterprise Architect; interface with FinOps Analyst; Exchange with colleagues around the world

Communication Scope

Executive-level communication; translate complex security risk into language that resonates with a CFO and PE investor; Fluent German and English; technical and executive-level conversations

Process & Methodology

M&A security, carve-out, divestiture, acquisition, programme management

Free ATS check

Applying for this Chief Information Security Officer (CISO) role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 64 detected

Required

IT security strategy ×3

security governance ×3

risk management ×3

divestiture security ×3

security due diligence ×3

threat landscape assessment ×3

security architecture principles ×3

risk appetite definition ×3

IT security governance framework ×3

policies ×3

Nice to have

IAM

ISMS

ISO 27001

Azure AD

cloud security

Azure

security operations

compliance

regulatory compliance

GDPR

Behavioural

thrives under constraint

prioritise ruthlessly

deliver what matters

credibility

translate complex security risk into language that resonates with a CFO and PE investor

Role Details

Work Mode

Hybrid work system

Type

FULL TIME

Experience

5–10 yrs

How to Apply on SmartRecruiters

SmartRecruiters often includes a video screening step — check camera and mic permissions.
Link your GitHub or portfolio directly in the profile section for technical roles.
Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.

ANONYMOUS · UNFILTERED

What do employees actually say about Keenfinity?

Real rants from real employees. Read before you apply.

Read Company Rants →