Risk & Compliance Consultant (all genders) Cyber Security

As a Risk & Compliance Consultant, you will play a key role in developing, implementing, and optimizing governance, risk, and compliance strategies for our customers. You will advise companies on compliance with legal requirements, internal guidelines, and international standards to ensure the long-term security of their IT infrastructures.

Requirements

• Successful completion of education or completed study in the field of economics, law, computer science, information security, or comparable
• Several years of professional experience in the field of governance, risk management, compliance, or IT security, ideally in a consulting function
• In-depth knowledge of GRC methods, processes, and tools (e.g. RSA Archer, ServiceNow GRC, MetricStream)
• Comprehensive understanding of regulatory requirements and standards in the field of IT security (e.g. ISO 27001, NIS-2, EU AI Act, Cyber Resilience Act, GDPR, NIST)
• Experience in conducting risk analyses, audits, and compliance evaluations
• Certifications in GRC (e.g. CISA, CRISC, ISO 27001 Lead Auditor/Implementer, CISSP) are an advantage
• Analytical thinking, structured working method, and excellent communication skills in German and English
• Ability to convey complex issues in a comprehensible way and advise stakeholders at different levels
• Very good German and English language skills

Benefits

• Responsible tasks in an international environment
• Mobile office option
• Structured onboarding phase with a mentor
• Support for your individual further development
• 30 vacation days + possibility of 2 weeks unpaid vacation, sabbatical & workation
• Flexible working hours and working models
• Corporate benefits
• Pizza and bowl days at our locations in Munich and Augsburg
• EGym Wellpass
• Job bike
• Diverse team events (Oktoberfest, Christmas party, after-work get-together, grill events on our rooftop terraces)
• Small gestures for birthdays, jubilees, and special occasions