GRC Analyst (m,f,x)

The role

We’re looking for a new teammate to join us on the journey of keeping HelloFresh a trustedname - someone with a passion for security, compliance and appetite for new challenges. AGRC Analyst works in a variety of ways to plan, design, implement and maintain Governance,Risk and Compliance initiatives and the elements supporting those.You will be part of the squad responsible for creating, maintaining and improving HelloFresh’ssecurity risk management program and remediation activities; information security and dataprivacy related processes, policies, and guidelines; supporting compliance and certificationrelated activities; and driving security awareness and education.

What you’ll do

• Assist in the establishment and maintenance of the security risk managementprogram
• Cooperate with various teams to identify, document, assess and remediate securityrisks
• Support the creation and update of security policies to establish and maintain a strongframework of security controls
• Develop comprehensive and accurate reports and presentations for both technical andexecutive audiences
• Effectively communicate findings and strategy to client stakeholders includingtechnical staff, executive leadership, and legal counsel
• Use formal project management skills in planning, tracking, and reporting to close theremediation loop
• Conduct third-party vendor security reviews and assessments regarding their securityand data privacy status
• Facilitate and improve the security awareness program of the company

What you’ll bring

• At least 1 year of experience in the fields of Information Security / Governance, Riskand Compliance (GRC) / IT auditing
• Experience in working with compliance programs (NIST, ISO 27001 / 27007, PCI DSS,NIS2 Directive), standards, and regulation
• Thorough understanding of data privacy regulations (GDPR, CCPA)
• Ability to map and interpret security guidelines/controls to the actual implementation ofsystems, from various Security Frameworks
• Experience with the creation and maintenance of information security policies and guidelines
• Experience with developing and executing security awareness programs and training
• Excellent interpersonal and communication skills (in English)

Elevate your lifestyle! Join one of Europe's fastest-growing tech powerhouses in a dynamic phase of expansion.

• Immerse yourself in a diverse global community of 90+ nationalities.
• Enjoy a competitive compensation package that goes beyond the norm, with perks like a HelloFresh- subsidized Pension Scheme, Berlin relocation support, and a Hybrid working model.
• Elevate your lifestyle with exclusive discounts on your weekly HelloFresh box and office meals.
• Invest in your growth with a German language learning budget, and access to the HelloFresh Academy.
• Plus, we've got your well-being covered with mental health support, transportation perks, and working-parent-friendly benefits. From our 24/7 gym access,wellbeing platforms like Headspace and Spill, to sabbatical leave options, HelloFresh is not just a workplace; it's a lifestyle of perks and possibilities!