IT SECURITY CONSULTANT

I am hiring an IT Security Consultant on behalf of a German IT-security and compliance firm providing holistic advisory, managed services, and training across regulated industries. They specialise in risk management, penetration testing, incident response, cloud security, and ISMS (e.g., ISO 27001, TISAX) implementation. They also offer AI-driven tools for managing information-security systems and compliance (e.g. NIS2, DORA, AI Act), plus scalable security operations (SOC, vulnerability management), and role-based training via a SaaS academy.

In this role you will be responsible for:

• Design, implement, and maintain ISMS frameworks for clients in line with ISO 27001, TISAX, and BSI IT-Grundschutz, including policies, processes, and documentation.

• Conduct IT security audits, risk assessments, and gap analyses, translating findings into actionable improvement measures and long-term security roadmaps.

• Advise clients on regulatory compliance, including NIS2, DORA, GDPR, and AI Act requirements, and support the development of governance, risk, and compliance structures.

• Develop security concepts and operational procedures, such as incident response plans, business continuity measures, and secure-by-design guidelines.

• Deliver awareness training and ongoing client support, helping organisations embed a strong security culture and adapt to emerging threats and technologies.

Do you have experience in Information security?, * Degree in Computer Science, Cyber Security, or a related technical discipline.

• Professional experience in a similar role in information security or compliance

• Familiarity with standards such as ISO 27001, TISAX, GDPR, NIST and/or NIS2.

• Strong analytical and communication skills, able to translate technical findings into business-relevant insights for client

• Strong communication skills C1 level German and fluent English

Desirable:

• Experience working in a regulated industry

• Experience with KRITIS and/or DORA