• Support the Information Security & Risk Manager in developing, maintaining, and operating both the AIMS and ISMS , including AI governance implementation by ISO/IEC 42001, and ISO/IEC 27001 continuous improvement activities.
• Coordinate internal and external audits by preparing, maintaining, and reviewing ISMS- and AIMS‑related controls, evidence, and remediation actions.
• Perform initial security and AI risk /impact assessments and contribute to enhancing SIG’s IT Risk Management processes within the Risk Management Portal.

   

• Conduct supplier security assessments and support the procurement process for supplier qualification, including AI‑related vendor and tool risk evaluations.

   

• Perform initial security assessments for critical IT and AI‑related projects, providing security requirements, risk mitigation guidance, and alignment with SIG’s ISMS and AIMS controls.

   

• Evaluate AI use cases, integrations, and tools under AIMS and ensure regulatory compliance, including alignment with the EU AI Act, NIS2, data protection requirements, and other applicable security and AI‑related regulations. This includes conducting AI impact assessments, verifying data classification, and ensuring responsible and secure AI usage.

   

• Support SIG’s Security Governance Framework by maintaining policies, procedures, and technical standards across ISMS and AIMS, ensuring documentation is up-to-date, aligned with global governance requirements, and consistently implemented across regions.

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 3+ years of hands-on experience in the Information Security or IT governance domain.
• Professional certifications such as ISO/IEC 42001 Lead Implementer, ISO 27001 Lead Implementer, ISO/IEC 42001 Lead Auditor, CISA, CISM, CompTIA Security+, Certified AI Governance Professional (CAIGP), or equivalent are preffered but not mandatory. 

• Foundational understanding of ISO 27001,ISO 42001, AI governance frameworks, and emerging regulatory requirements (e.g., EU AI Act, NIS2, GDPR).

   

• Knowledge of ISMS (ISO 27001) requirements, control frameworks, and audit processes.

   

• Knowledge of AIMS (Artificial Intelligence Management System) concepts such as AI lifecycle governance, data classification, AI risk assessment, and responsible AI principles.

   

• Familiarity with legal and regulatory requirements, including GDPR, EU AI Act, NIS2, and other security or AI‑related compliance standards.

   

• Knowledge of risk management methods, including risk identification, assessment, and mitigation techniques.

   

• Awareness of the operational impacts and business risks caused by cybersecurity or AI‑related incidents.

   

• Understanding of how ISMS and AIMS controls integrate with IT and business processes, including policy management, governance workflows, and audit readiness.

   

• Experience supporting compliance initiatives or regulatory readiness activities (e.g., audit preparation, evidence collection, control documentation)

   

• Results-driven, self‑motivated, and able to work independently with minimal supervision.

We are looking for people who are willing to consistently achieve results, even under tough circumstances, employees who create a climate where everyone is motivated to do their best to help the organization achieve its objectives. If you actively seek new ways to grow and be challenged, if you develop people to meet both their career goals and the organization’s goals, SIG is the place for you. To deliver better for our customers, our future colleagues build strong customer relationships and deliver customer-centric solutions. Finally, we are looking for colleagues who build partnerships and work collaboratively with others to meet shared objectives. Are you someone who applies knowledge of business and the marketplace to advance the organization’s goals? Are you someone who can create new and better ways for the organization to be successful? If the answer is ‘yes’, come and join us.

SIG is the place for you to build something incredible. We offer competitive compensation and an opportunity to partially work from home. If you join us, you will be part of a globally successful international company, which is leading its industry in sustainability, technology, and more. We think of ourselves as the career launchpad - a place to develop yourself fast with real work, real experience, real opportunities to build skills. You will be part of a highly motivated and dynamic team, you will have personal development opportunities, trainings and coaching opportunities from senior team members. If you show skill and willingness to learn, we'll back you all the way.

SIG is a leading provider of packaging systems and solutions for better. We work in partnership with our customers to bring food products to consumers around the world in a safe, sustainable, and affordable way. We are the only packaging system supplier covering carton, pouch, and bag-in-box. Our versatile technology and product innovation capacity enable us to deliver better for customers, for consumers, and for the world. Sustainability guides us, technology empowers us, but it’s the passion and drive of our people that truly enable us to deliver better. Founded in 1853, SIG is headquartered in Neuhausen, Switzerland, and listed at the SIX Swiss Exchange.