Information Security Manager (f/m/d)

Trusted Shops GmbH • Cologne

  • Vollzeit/fulltime


ab today / asap

Your duties

Trusted Shops is Europe´s No. 1 Trust Brand, pursuing the mission to enable trust between business and people for over 20 years with a team of 830 great colleagues.

To further improve and maintain our current security measures, we are looking for you as our second Information Security Manager. Embedded in a great team you drive projects to support our further professionalization, growth and – of course – information security.

  • Plan, coordinate and control measures to maintain and improve the information security of our services & infrastructure
  • Continuous development of the global information security management system (ISMS)
  • Contributing to the global implementation of policies and guidelines within Trusted Shops
  • Monitoring of current security alerts and definition of appropriate countermeasures if necessary
  • Advising on internal projects relating to information security
  • Participation in audits and assessments as well as their implementation at service providers of Trusted Shops
  • Designing and setting up IT security training courses to raise awareness and further educate Trusted Shops employees

Your profile

  • Fascination for cutting edge IT and collaboration with various stakeholders to drive projects forward
  • Professional experience in the IT security environment
  • Experience with certifications (e.g. SOC-2, ISO27001) and knowledge of standards such as ISO27001, PCI-DSS, BSI Grundschutz, etc.
  • Good knowledge of data protection (GDPR)
  • Independent working style, entrepreneurial thinking and action
  • Fluent in spoken and written in English, German is a plus

What we offer you

  • New Work: remote or flexible working from Germany, Spain, UK, Netherlands, Poland, France
  • 30.5 days holiday
  • One self education day per month
  • Individual training opportunities
  • Buddy programme (an experienced trustee is at your side)
  • Team events (summer party, Christmas party, unit events)
  • Health Pass (free online and offline sports, fitness and health courses)
Adrian Philippovits

Adrian Philippovits

Inhouse Tech Recruiter
What opportunities does "new work" offer our colleagues? Patrick tells us his story
What opportunities does "new work" offer our colleagues? Patrick tells us his story

Your benefits in tech

New work

Work from wherever you feel most comfortable. Whether in one of our 5 offices or temporary from another location in Europe.

Health Pass

Stay fit – physically and psychologically. Our company health management offers you a wide range of courses, presentations and workshops.

International flair

With a team from more than 40 different nations, it never gets boring. We celebrate our diversity and the countless new perspectives it gives us.

Individual development opportunities

Unleash your talent and improve your individual skills that support you in your work.

Buddy programme

Your buddy will help you settle in when you first start out with us. Later, you can also share your experience with new colleagues.

Team events

Whether in summer, winter or whenever it suits your team – we enjoy spending time together.


In cross-team guilds, we work on current topics in a self-organised and practical manner, e.g. in the Architecture guild or the DevOps guild


We like to think outside the box, developing useful and creative solutions to problems during small events – whether related to work or not

Peer- /mob-programming

Many people work together to develop the best code. This allows us to progress even more effectively in projects and to learn from each other.

Knowledge marketplace

Everyone can offer knowledge or search for it on a kind of bulletin board. This creates spontaneous training sessions with each other

Our values


Open and clear communication gets us to our goals quickly. Address your topics openly – we will find a solution for everything together.


Every single one of our colleagues is a valuable part of our community. Respectful interaction and openness are prerequisites for our work.


We know you’re doing a great job – otherwise you wouldn't be here. We trust you, your skills, ideas and intentions.

Are you passionate about the code behind our products?

Programming Lanugages
Programming Lanugages

Java: Java is used by some of our Tech teams and supports us with components that have complex logic, usually in combination with Spring Boot 
TypeScript: We use TypeScript combined with the Angular and React frameworks in the frontend and also on the server side with NodeJS 
Kotlin: We sometimes use Kotlin as an alternative to Java for server-side solutions and for our mobile development 
Python: We often use Python when processing or transforming data. We also occasionally write services in it with the help of AWS Lambda 


Angular: Particularly in our B2B area, we rely on Angular for our frontend in order to be able to develop interactive solutions efficiently 
React: React is used when the performance of our solutions is important. Our B2C environment, in particular, benefits from React (shop profiles, trust badges, widgets, etc.) 
Spring Boot: When it comes to complex business logic in Java and Kotlin, we use Spring Boot. It is deployed in Kubernetes clusters 
NodeJS: Our focus is on serverless, and we often use typescript in the backend. We mostly use NodeJS in combination with AWS Lambda 

Service & Tools
Service & Tools

Circle CI:  CircleCI is our CI/CD tool for automated builds, testing & deployment 
GitHub:  GitHub supports our internal open source policy and enables cross-team cooperation and feedback 
Ansible: We use Ansible to provide our virtual servers in a repeatable and automated way 
Terraform: Our AWS infrastructure is fully managed with Terraform. This allows us to keep a simple history of all changes and minimise the manual effort. 

Databases & Hosting
Databases & Hosting

DynamoDB: DynamoDB is often used to access large amounts of data in real time. We regularly use it with AWS Lambda to provide a scalable solution. 
PostgreSQL/MySQL: If flexibility of data access is paramount, then we also use relational databases 
AWS:  For us, it's "cloud first" so that we are able to scale the infrastructure of our products. Here we rely on services such as AWS Lambda, S3 and DynamoDB 


Dariia Spychak
Dariia Spychak
Backend Developerin

Right now we are working on a new major project for user management and permissions, which is interesting but also complex and has many aspects that will allow it to be integrated into other components. I really like the fact that, as developers within the team, we can decide which technology and programming language we want to use and how we structure the processes. This can sometimes be a challenge, but it helps us gain a lot of new experience. I can work on anything I want to learn about on self-learning days. And of course we have a very friendly and open working atmosphere. Team building events and mob/pair programming sessions also contribute to this. 

Have we awakened your interest?

Apply now