Aktiviere Job-Benachrichtigungen per E-Mail!
Principal Consultant - Information Security (m / f / d)
Xcede
Leipzig
Vor Ort
EUR 60.000 - 80.000
Vollzeit
Erstelle in nur wenigen Minuten einen maßgeschneiderten Lebenslauf
Überzeuge Recruiter und verdiene mehr Geld. Mehr erfahren
Zusammenfassung
A specialized consultancy in Leipzig is looking for an experienced Information Security consultant to lead and support client projects. This role involves direct client interaction in financial services and regulated industries to improve IT risk management and compliance with standards like ISO 27001 and DORA. Candidates should have several years of relevant experience, a degree in a related field, and strong communication skills in German and English. Certifications such as CISSP or CISM are a plus but not mandatory.
Qualifikationen
- Several years of experience in information security, IT compliance or cyber risk.
- Strong understanding of ISO 27001, BSI 200-x, DORA, NIS2.
- Practical experience in analyzing complex systems.
Aufgaben
- Lead or support client projects in information security, IT risk and compliance.
- Conduct gap analyses and support implementation of requirements.
- Coordinate cyber risk reduction programmes.
Kenntnisse
Ausbildung
A specialised consultancy is expanding its team of Information Security experts. This role is focused on delivering practical, regulatory driven security and risk projects, not high level strategy slides. You’ll work directly with clients across financial services, critical infrastructure and other regulated industries to help them manage IT risks and meet compliance expectations.
- Lead or support client projects in information security, IT risk and compliance – covering planning, execution and reporting
- Conduct gap analyses and support the implementation of requirements under DORA, NIS2, KRITIS, ISO 27001 or IT‑Grundschutz
- Evaluate business and IT processes from a risk, efficiency and compliance perspective
- Coordinate cyber risk reduction programmes and security governance frameworks
- Help clients integrate security into existing processes and IT landscapes, including areas like IAM, SIEM or third‑party risk
- Translate regulatory and technical requirements into structured, actionable plans
- Build long‑term relationships with clients and contribute to developing internal methods and service offerings
- Several years of experience in information security, IT compliance or cyber risk – ideally within consulting or project‑based environments
- Degree in IT, engineering, business IT or a related field
- Strong understanding of common frameworks and standards (e.g. ISO 27001, BSI 200‑x, DORA, NIS2)
- Practical experience in analysing complex systems and explaining risks and controls clearly
- Very good communication skills in both German and English
- Certifications such as CISSP, CISM, CISA or ISO 27001 Lead Implementer are a plus, but not a must
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
