IT & Information Security Risk and Compliance Expert (m / f / d)

The purpose of a role is: to proactively identify assess and manage IT and information security risks within METRO AG and its entities which includes developing risk management strategies guidelines and frameworks.

• Conduct comprehensive IT and information security risk assessments to identify potential vulnerabilities and threats.
• Contribute to develop and maintain risk management frameworks guidelines and standard operating procedures.
• Support the Chief Information Security Officer (CISO) and Business Information Security Officers (BISOs) to integrate IT risk management into the broader information security strategy.
• Monitor and follow-up on risk mitigation efforts and provide guidance and support to METRO entities in implementing effective IT / OT and cyber risk management practices.
• Prepare and deliver risk-related reports and updates.

• Relevant Masters degree in Computer Science Information Security or a related field
• Minimum of 3 years of experience in cyber security
• In-depth knowledge of risk management compliance and associated frameworks
• Familiarity with common information security standards (e.g. ISO 27001 NIST)
• Advanced skills in building detailed and actionable reports
• Proven project management abilities ensuring projects are delivered on time and within budget
• Effective stakeholder management with strong communication and coordination skills in complex organizational environments
• Broad knowledge and overview of security architectures and security systems in IT and OT environments
• Fluent English skills

• Work-life balance: Flexible working hours with the option of mobile working in agreement with your line manager; 30 days of holidays.
• Training: A comprehensive training offer via our own training center or externally.
• Well-being: Health days with health checks and information about well-being; company medical care including preventive services such as flu shots; EAP program.
• Exciting life on campus: Free gym and sports classes; Rioba coffee bar; canteen with discounted meals for employees; many campus events.
• Discounts: Discounted Jobticket and discounts in wholesale stores and at partner companies.
• Comfort: Good transport connections; free parking; JobBike.
• Company pension plan: Contribution to company pension.
• Family driven: Three daycare centers on campus; support of holiday camps for children of employees.

Remote Work: No

Employment Type: Full-time

Key skills relevant to this role include IT and information security expertise, risk management, stakeholder management, and report writing.