Lead Grc Cyber Security Consultant (DFM)

Lead large information security risk assessments using qualitative and / or quantitative methods

Developing security strategies in collaboration with internal and external teams experts and stakeholders

Developing corrective actions for complex client projects.

Develop and implement security policies and procedures for the entire organization ensure that policies and procedures comply with cybersecurity regulations and best practices and raise awareness of security policies

Train employees on best practices

Providing technical guidance and development for Junior and Senior GRC Consultants in projects and fostering their professional growth

Plan and lead large consulting projects in the field of Governance & Compliance

Apply consulting methods independently while documenting and presenting results internally and externally

Design and delivery of awareness and training to internal and external customers

Improvement of existing processes and toolings and involvement of technical experts to guarantee successful delivery and training of consultants

Regular advice to customers for possible further support (cross- / up-selling) and bid preparation for small to medium sized projects or significant support for big sized projects

Conduct internal audits to verify compliance and recommend improvements if necessary

The work task requires knowledge and skills as usually provided by a relevant completed degree with a standard period of study of up to 4 years in the area of engineering computer science cybersecurity and related extended subject-specific additional qualifications or completed vocational training with a corresponding particularly extensive subject-specific additional qualification can be acquired. The overall knowledge and experience required may have been acquired in other ways

Extensive knowledge and experience in the above listed tasks

Deep understanding of major security management frameworks (ISO 2700x NIST CSF OT Governance ISO 31000 EBIOS-RM BSI IT-Grundschutz)

Deep understanding of security technologies controls and best practices

Ability to develop and maintain security policies procedures and standards

Proven extensive experience leading Governance projects and security initiativesproven and strong experience with ISMS implementation and security requirements at all levels

Extensive Knowledge of regulatory requirements across industries (BSI Export Control GDPR NIS2 Defense EASA Regulations) and proven experience with GRC platforms and risk management tools

Exceptional ability to communicate complex security concepts to non-technical stakeholders strong presentation and report writing skills for executive-level audiences and strong negotiation and influence skills stakeholder management at executive level

Ability to advise the customer regarding his request and objectives and to build consensus among diverse stakeholders

Cultural sensitivity for working with international teams

German and English : negotiation level mandatory (oral and written)

Willingness to travel on business domestically and internationally

A security clearance is required for this activity or must be issued by the responsible authorities.

Our location is just a stones throw away from Munich the beautiful state capital of Bavaria. Do you like sports and other outdoor activities The Alps and Lake Starnberg are just an hour away and offer a wide range of leisure activities.

If desired your place of work can also be flexibly determined between our locations within Germany provided the company agrees. These are as follows : Ottobrunn (Munich area) Donauwörth Friedrichshafen Cologne Finkenwerder (Hamburg). If the company agrees the specified location will be agreed in writing in your employment contract as part of the hiring process.

Mobile working and flexible working hours

Fair and attractive remuneration and special payments

30 days holiday and additional days off for special occasions

Intensive induction and expert support as part of onboarding in the form of personalized onboarding with a personal mentor

Excellent training opportunities and promising development prospects

Attractive social benefits and offers including employer-financed pension scheme employee share options discounted car leasing bike leasing special conditions for insurance employee benefits at cooperating companies

On-site facilities (depending on location) e.g. canteen and cafeteria fitness studio on-site kindergarten company medical service and other health-related services

This job requires an awareness of any potential compliance risks and a commitment to act with integrity as the foundation for the Companys success reputation and sustainable growth.

Airbus Protect GmbH

Permanent

Professional

Job Family : Cyber Security

By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.

Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background age gender disability sexual orientation or religious belief.

Airbus is and always has been committed to equal opportunities for all. As such we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to .

At Airbus we support you to work connect and collaborate more easily and flexibly. Wherever possible we foster flexible working arrangements to stimulate innovative thinking.

Contract

ISO 27001,B2B Sales,SafeNet,IDS,Risk Management,PCI,NIST Standards,Salt,Information Security,Customer relationship management,Encryption,FISMA

Full-Time

years

1