Tonies is the world's leading interactive audio platform for children, with over 10 million Tonieboxes and 125 million Tonies sold globally. Our intuitive, screen-free system empowers children to learn and play independently in a safe and engaging way.

As Manager Digital Trust & Security, you will lead the strategic expansion of our security service offerings. You will bridge the gap between technical architecture and business-centric consulting, ensuring our digital infrastructure remains resilient while fostering consumer trust across our global operations.

Responsibilities:

• Strategic Governance & Architecture: Define the global security vision and design scalable architectures to mitigate complex cyber threats across our media and hardware footprints.
• Trust Infrastructure Management: Architect and manage the security technology stack, ensuring our global IT assets and infrastructures remain resilient against emerging threats.
• Proactive Risk & Compliance: Lead comprehensive vulnerability assessments and recommend mitigation strategies that align with industry standards such as ISO 27001.
• Operational Excellence: Oversee incident response lifecycles, from real-time resolution to deep-dive post-incident analysis and reporting.
• Security Culture & Training: Develop and execute global training programs to embed security awareness into the company DNA, ensuring compliance across all departments.
• Cross-Functional Leadership: Partner with Enterprise Architecture and Application Management to integrate security-by-design into every product and internal service.

What we are looking for:

• Expertise: Several years of leadership in security or service management within the technology or consumer electronics sector.
• Technical Breadth: Deep understanding of security frameworks, cloud security (AWS/GCP), and modern monitoring platforms.
• Strategic Mindset: Proven ability to translate complex security risks into actionable business insights for diverse stakeholders.
• Lateral Leadership: A collaborative leader capable of managing cross-functional initiatives in a fast-paced, global environment.
• Communication: Professional fluency in English and German is essential for our global coordination.
• Mandatory: Demonstrable expertise in at least two security domains, backed by relevant professional certifications.
• Preferred: Advanced credentials in Cloud Security or specialized standards like ISO 27001.

Why tonies?

Our benefits vary by location. The following benefits apply in Germany:

• Global Teamwork: We collaborate across departmental and country borders on our vision to bring the Toniebox into every child's room in the world.
• Come as you are: This applies not only to the dress code but also to everything else. Because only where you truly feel comfortable can you give your best.
• Mobility: Choose the option that suits you best - a Deutschlandticket (public transport ticket) for unlimited mobility, a monthly contribution for an office parking space, a leasing bicycle, or a remote work subsidy.
• Enhanced Security: Benefit from subsidies for company pension plans, occupational pension schemes, and occupational disability insurance.
• Rest & Time Off: Enjoy 30 days of paid annual leave as well as three additional days off such as Rosenmontag, Christmas Eve, and New Year's Eve. After one year of employment, you can also use up to 10 'toniecation days' (unpaid leave days).
• Continuous Learning: Benefit from our internal and external training opportunities as well as an individual learning budget to continuously expand your knowledge.
• Language Learning & Relaxation: Improve your communication skills with the language learning app Babbel and find relaxation through our access to the meditation app Calm.
• Discounts: Benefit from attractive discounts on our entire range of tonies products.

XML job scraping automation by YubHub

About the Team: Anduril employs a variety of networks and networking infrastructures to support global operations. Information Systems Security Managers are in charge of directly supporting business lines that wish to deploy Anduril products in classified environments.

About the Job: As an Information Systems Security Manager, you will be responsible for providing expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments. You will partner with program and security teams to coordinate security artifacts in support of classified deployments. You will apply technology standards from the commercial space in classified, air-gapped environments.

Responsibilities:

• Provide expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments.
• Partner with program and security teams to coordinate security artifacts in support of classified deployments.
• Apply technology standards from the commercial space in classified, air-gapped environments.
• Collaborate with Information System Owners to understand key stakeholders' needs and provide complex technical solutions to meet contractual obligations.
• Tailor NIST 800-53 controls to determine applicability to the network environment and oversee the implementation of Continuous Monitoring for respective programs.
• Define, document, and conduct security scanning on Anduril's products and accredited information systems.
• Scope, shape, and orchestrate the development of features to ensure products meet compliance goals.

Required Qualifications:

• Design, develop, and implement secure systems and networks per NIST RMF, JSIG, and other industry standards.
• Integrate security best practices into Anduril's Software Development Lifecycle (SDLC) and infrastructure design, collaborating with internal IT and engineering teams.
• Conduct security risk assessments, vulnerability assessments, and audits to identify and mitigate threats.
• Recommend and implement security solutions, such as IDS/IPS, encryption protocols, and secure communications technologies.
• Develop and enforce access controls, encryption strategies, and other technical measures to safeguard systems.
• Maintain and update System Security Plans (SSPs), POA&Ms, and other accreditation documentation.

Preferred Qualifications:

• Experience with application security paradigms such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
• Proven experience in securing micro-services architecture, including implementing best practices and compliance with DoD cybersecurity standards.
• Experience with cybersecurity in unmanned and ground control system within DoD environments.
• Experience with containerization and kubernetes along with the best practices for securing them.
• Experience with Cloud Service Providers (CSPs) and the various tools they offer for implementing security and compliance best practices.

Salary: The salary range for this role is $146,000-$194,000 USD.

Benefits: Anduril offers top-tier benefits for full-time employees, including comprehensive medical, dental, and vision plans at little to no cost to you. Anduril also offers income protection, generous time off, family planning and parenting support, mental health resources, professional development, commuter benefits, relocation assistance, and a retirement savings plan.

Protecting Yourself from Recruitment Scams: Anduril is committed to maintaining the integrity of our Talent acquisition process and the security of our candidates. We've observed a rise in sophisticated phishing and fraudulent schemes where individuals impersonate Anduril representatives, luring job seekers with false interviews or job offers. These scammers often attempt to extract payment or sensitive personal information.

To ensure your safety and help you navigate your job search with confidence, please keep the following critical points in mind:

• No Financial Requests: Anduril will never solicit payment or demand personal financial details (such as banking information, credit card numbers, or social security numbers) at any stage of our hiring process. Our legitimate recruitment is entirely free for candidates.
• Please always verify communications:
• Direct from Anduril: If you receive an email from one of our recruiters, it will only come from an @anduril.com address.
• Via Agency Partner: If contacted by a recruiting agency for an Anduril role, their email will clearly identify their agency. If you suspect any suspicious activity, please verify the agency's authenticity by reaching out to contact@anduril.com.
• Exercise Caution with Unsolicited Outreach: If you receive any communication that appears suspicious, contains grammatical errors, or makes unusual requests, do not respond or engage with the sender.

XML job scraping automation by YubHub

This role ensures the protection of personnel, assets, and sensitive information across all facility operations. You will develop and enforce security procedures, oversee access control systems, coordinate security training, and interface with regulatory and law enforcement agencies as needed.

This position requires a strong understanding of government security protocols and experience in regulated or high-security environments. Former military or government service experience is highly valued.

Responsibilities:

• Develop, implement, and maintain facility security programs in compliance with federal and company regulations.
• Establish and manage access control policies, visitor procedures, and badging systems.
• Oversee physical security measures including perimeter control, surveillance systems, and alarm response.
• Conduct vulnerability assessments and implement corrective actions to maintain compliance.
• Ensure compliance with applicable DOE, NRC, and DOD security requirements.
• Serve as the primary point of contact for security-related audits, inspections, and reviews.
• Prepare and maintain documentation, reports, and records required for regulatory compliance.
• Collaborate with internal stakeholders to integrate security requirements into facility operations and projects.

Personnel Security:

• Oversee the personnel security program, including background checks, clearance processing, and access authorization.
• Ensure proper handling and protection of sensitive information and controlled materials.
• Provide training and guidance to employees on security policies, procedures, and best practices.

Incident Response & Investigation:

• Lead investigations into security incidents and violations; coordinate with local, state, or federal authorities as required.
• Maintain and test emergency response and security incident protocols.
• Support after-hours or weekend response to urgent security matters as necessary.

Preferred Qualifications:

• Bachelor’s degree in Criminal Justice, Security Management, or related field; equivalent military or professional experience accepted.
• 5+ years of experience in security, law enforcement, or military operations, preferably in a regulated or government environment.
• Familiarity with DOE, NRC, or DOD security requirements and facility clearance processes.
• Experience implementing and managing physical and personnel security programs.
• Strong knowledge of access control, CCTV, intrusion detection, and related systems.
• Excellent organizational, communication, and leadership skills.
• Ability to obtain and maintain a federal security clearance.
• Former military or government service strongly preferred.

Benefits:

• Health, Dental & Vision Insurance
• Health Savings Account
• Disability and Life Insurance
• 401K Plan
• Paid Time Off, Holidays

XML job scraping automation by YubHub