Quality and Information Security Manager (M/F)

Core Mission

To lead the design, implementation, and continuous improvement of a unified management system. This function ensures the organization meets global standards for quality, data security, environmental responsibility, and workplace safety, transforming compliance from a requirement into a competitive advantage.

1. Quality Management System (ISO 9001)

• Process Excellence: Establish a process-based approach across all departments to ensure consistent output that meets client specifications.
• Risk-Based Thinking: Integrate risk identification into every project phase to prevent non-conformities before they occur.
• Quality Gate Architecture: Define specific technical validation points (Gates) throughout the product or project lifecycle.
• Performance Intelligence: Monitor the Cost of Poor Quality (COPQ) and use data-driven KPIs to trigger corrective action plans.
• Supplier Quality: Audit and rank vendors to ensure the entire supply chain aligns with the organization's quality benchmarks.

2. Information Security & Automotive Data Trust (ISO 27001 & TISAX)

• Information Security Management (ISMS): Build a framework that protects the confidentiality, integrity, and availability of data.
• Automotive Compliance (TISAX): Specifically address the high-security requirements of the automotive industry, focusing on prototype protection and third-party data handling.
• Vulnerability Governance: Lead regular risk assessments to identify technical and human threats to information assets.
• Incident Resilience: Develop a "Rapid Response" protocol for security breaches, ensuring minimal downtime and transparent reporting to stakeholders.

3. Environmental, Health & Safety (ISO 14001 & ISO 45001)

• Environmental Stewardship (14001): Identify the organization's environmental aspects and impacts. Implement waste reduction, energy efficiency, and life-cycle thinking into operations.
• Workplace Safety (45001): Establish a proactive culture of health and safety. Conduct regular hazard identifications and "near-miss" reporting to eliminate workplace accidents.
• Legal Compliance: Maintain a rigorous regulatory watch to ensure the organization stays ahead of local and international environmental and labor laws.
• Emergency Preparedness: Design and test response plans for environmental accidents (spills) and medical or safety emergencies.

4. Integrated Audit & Continuous Improvement

• Unified Audit Program: Plan and execute internal audits that cover all five standards (9001, 27001, TISAX, 14001, 45001) simultaneously to reduce operational disruption.
• Root Cause Mastery: Use structured methodologies (8D, 5 Whys, Ishikawa) to solve systemic failures across any of the management pillars.
• The PDCA Cycle: Drive the "Plan-Do-Check-Act" philosophy at every level, ensuring that "Lessons Learned" from one department are shared across the entire organization.