Key skills
Cyber SecurityAnalyticsRisk ManagementNegotiationAccount Management
About this role
Role Overview
- Conduct information security risk assessments using established qualitative and/or quantitative methods; contribute to the development of security strategies and propose corrective measures for small to medium-sized consulting projects
- Support the development and implementation of security policies and procedures across the organization, ensure compliance with cybersecurity regulations, and raise awareness by training employees on best practices
- Define and monitor functional and technical mitigation plans; perform methodological and technical monitoring and conduct data analytics
- Plan and lead subtasks or smaller workstreams in consulting projects and participate in medium-sized consulting engagements
- Apply consulting methods independently while documenting and presenting results internally and externally
- Design and deliver awareness programs and training to internal and external customers
- Improve existing processes and tooling within the area of responsibility
- Identify opportunities for additional customer support and forward them to the account management team (supporting cross-/up-selling)
- Conduct internal audits to verify compliance and recommend improvements based on standardized checklists and guidelines
- Collaborate in preparing proposals and company presentations
- Take on functional and/or project-related responsibilities (e.g., technical project planning, ownership of sub-topics)
- Prepare required documentation and present work results
Requirements
- Solid understanding of major security management frameworks (ISO 2700X, BSI IT-Grundschutz, NIST CSF, IT/OT Governance, ISO 31000)
- Familiarity with security technologies, controls, and industry best practices
- Ability to maintain and update security policies, procedures, and standards
- Experience working on governance projects and security initiatives; experience with ISMS implementation is a plus
- Knowledge of regulatory requirements across industries (e.g., NIS2, GDPR) and experience with GRC platforms and risk management tools
- Ability to explain complex security concepts clearly to non-technical stakeholders
- Capability to advise customers on their requests and objectives within the project scope
- Cultural sensitivity for working with international teams
- German and English at a negotiation level (spoken and written) required
- Willingness to travel domestically and internationally
- A security clearance is required for this position or must be issued by the responsible authorities
Tech Stack
- Cyber Security
Benefits
- Mobile working and flexible working hours
- Fair and attractive remuneration including special payments
- 30 days of vacation plus additional days off for special occasions
- Intensive onboarding and expert support, including personalized onboarding with a dedicated mentor
- Excellent training opportunities and promising development prospects
- Attractive social benefits and offers, including employer-financed pension scheme, employee share options, discounted car leasing, bike leasing, preferential insurance conditions, and employee benefits at partner companies
- On-site facilities (depending on location), e.g., canteen and cafeteria, fitness studio, on-site kindergarten, company medical service and other health-related services