• As part of a newly created staff unit, you will take on a key role as Information Security Officer in ensuring information security and will help us further develop and maintain our standards. • You will be responsible for establishing, managing and continuously advancing a company-wide IT security strategy. • You will position IT security as a competitive advantage for chargecloud in the SaaS market. • Develop and maintain a company-wide security strategy that meets our high standards and regulatory requirements. • Define and implement security principles, policies and standards that create a clear foundation for information security across the company. • Take technical responsibility for our Information Security Management System (ISMS) and its continuous improvement. • Support and prepare ISO 27001 audits, including creating the necessary documentation and reports. • Provide technical leadership and work closely with central IT, platform, cloud and engineering teams to translate security requirements into actionable technical measures. • Apply hands-on technical skills, e.g., in Identity & Access Management (IAM), CI/CD pipelines, and cloud and platform architectures to implement security solutions effectively. • Be responsible for compliance topics, particularly with regard to regulatory requirements.

• Protect assets and reduce risk across both public cloud infrastructure and physical warehouse operations. • Ensure effective controls are implemented, adhering to SOC 2 and ISO 27001 standards. • Collaborate with DevOps, IT Operations, and Warehouse Operations teams to build a security-first culture. • Use cloud-native security tools to detect threats, vulnerabilities, and misconfigurations. • Lead technical implementation of security controls required for SOC 2 Type II and ISO 27001 certification. • Review and promote adherence to security policies, ensuring they are practical and enforced. • Automate security control evidence for compliance/audit purposes. • Evaluate third-party software and logistics hardware vendors. • Collaborate with network engineers to secure infrastructure at warehouses locations. • Implement security protocols for warehouse technologies. • Manage and audit physical and logical access controls for warehouse staff. • Oversee Identity and Access Management (IAM) to ensure secure authentication for users, apps, devices, and cloud resources. • Collaborate with the DevOps team to ensure effective SAST/DAST scanning of repos and CI/CD pipelines.

• Support the development and maintenance of the Cybersecurity Framework, including policies, controls, and the risk model • Collaborate with cybersecurity and business stakeholders to identify and align core cybersecurity requirements • Harmonize relevant framework components into a unified, consistent model across the organization • Monitor and report on framework artefacts to ensure they remain accurate and up-to‑date • Use tools such as ServiceNow IRM and the Unified Compliance Framework to create a harmonized, streamlined governance environment • Drive continual improvement of the framework through active engagement with global stakeholders • Produce framework reports and dashboards using existing enterprise toolsets • Contribute to strong governance practices that enhance overall cybersecurity posture

• enhance detection, automation, and response capabilities • collaborate with security engineering and operations function