Cyber Security Grc Senior Consultant

RIB Deutschland GmbH
Ottobrunn, Germany
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English, German
Experience level
Senior

Job location

Ottobrunn, Germany

Tech stack

Computer Security
Information Security Management System
Information Technology
Data Analytics
RSA Archer Platform

Job description

  • Conduct regular information security risk assessments using qualitative and/or quantitative methods, develop security strategies in collaboration with internal teams and stakeholders and propose corrective measures for medium to big consulting projects
  • Develop and implement security policies and procedures for the entire organization, ensure that policies and procedures comply with cybersecurity regulations and best practices and raise awareness of security policies and train employees on best practices
  • Definition and monitoring of functional and technical mitigation plans, methodological and technical monitoring, data analytics and mathematical modeling
  • Plan and lead medium sized consulting projects and significantly participate to consulting projects of medium to big size
  • Apply consulting methods independently while documenting and presenting results internally and externally
  • Design and delivery of awareness and training to internal and external customers
  • Improvement of existing processes and toolings and involvement of technical experts to guarantee successful delivery and training of (junior) consultants
  • Regular advice to customers for possible further support (cross-/up-selling) and Bid preparation for small to medium sized projects or significant support for big sized projects
  • Conduct internal audits to verify compliance and recommend improvements if necessary
  • Collaboration in the preparation of offers and company presentations
  • Taking on functional and/or project-related tasks in projects (e. g. technical project planning, topic responsibility)

Requirements

The work task requires knowledge and skills that are generally acquired through a relevant, completed degree programme with a standard duration of up to 4 years in the field of engineering, computer science, cybersecurity or comparable degree programmes and a related extended subject-specific additional qualification. The overall required knowledge and experience may have been acquired in other ways

Skills and competences

  • Extensive knowledge and experience in the above listed tasks
  • Deep understanding of major security management frameworks (ISO 2700X, BSI IT-Grundschutz, NIST CSF, IT/OT Governance, ISO 31000, any risk methodology),
  • Deep understanding of security technologies, controls, and best practices
  • Ability to develop and maintain security policies, procedures, and standards
  • Proven extensive experience leading Governance projects and security initiatives, strong experience with ISMS implementation and security requirements at any level is a plus,
  • Extensive Knowledge of regulatory requirements across industries (NIS2, Export Control, GDPR, Defense, EASA Regulations) and proven experience with GRC platforms and risk management tools
  • Exceptional ability to communicate complex security concepts to non-technical stakeholders, strong presentation and report writing skills for executive-level audiences and strong negotiation and influence skills, stakeholder management at executive level
  • Ability to advise the customer regarding his request and objectives and to build consensus among diverse stakeholders
  • Cultural sensitivity for working with international teams
  • German and English: negotiation level mandatory (speaking and writing)
  • Willingness to travel domestically and abroad

A security clearance is required for this activity or must be issued by the responsible authorities.

Benefits & conditions

  • Mobile working and flexible working hours
  • Fair and attractive remuneration and special payments
  • 30 days' holiday and additional days off for special occasions
  • Intensive induction and expert support as part of onboarding in the form of personalized onboarding with a personal mentor
  • Excellent training opportunities and promising development prospects
  • Attractive social benefits and offers, including employer-financed pension scheme, employee share options, discounted car leasing, bike leasing, special conditions for insurance, employee benefits at cooperating companies
  • On-site facilities (depending on location) e. g. canteen and cafeteria, fitness studio, on-site kindergarten, company medical service and other health-related services

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth.

Apply for this position