Security Auditor (m/f/d)

The BERNER Group is a European trading company specializing in the mobility, construction, and industry sectors. We are a leading B2B specialist and an innovative manufacturer of chemical products, committed to pushing the limits of the possible for a better tomorrow. Our brands, BERNER, BTI by BERNER, and CCS, support our customers in maintaining successful and efficient operations.

1. Conduct audits of security controls, risk management processes, and compliance within IT environments, ensuring adherence to relevant frameworks and standards.
2. Collaborate with internal teams to evaluate security practices and identify gaps or weaknesses.
3. Advise on remediation actions to address audit findings and enhance security posture.
4. Support preparation for audits by external parties or regulatory bodies, ensuring complete and accurate compliance documentation.
5. Perform risk assessments and assist in developing risk mitigation strategies.
6. Ensure continuous improvement of internal audit processes and security compliance practices.
7. Communicate audit findings clearly to stakeholders, including senior management, and provide recommendations for risk reduction and governance improvement.
8. Monitor and report on the effectiveness of security policies and controls, promoting adherence to industry best practices.

• Degree in IT Security, Information Systems, Business Administration, or a related field.
• Strong knowledge of security frameworks such as NIS2, ISO 27001, NIST, SOC 2, and other relevant standards.
• Extensive experience in IT security audits, vulnerability assessments, and compliance reviews.
• Ability to evaluate and audit complex technical systems and controls.
• Fluency in English (written and spoken).
• Strong analytical skills and stakeholder management abilities.
• Excellent interpersonal skills for guiding change initiatives.

• Broad security domain experience.
• Experience in auditing, GRC, preferably in a Big Four or similar organization.
• German language skills are helpful but not mandatory.
• Additional benefits include: permanent contract, partly remote work, structured onboarding, and various employee benefits such as food vouchers, transportation allowance, bike leasing, sport offers, pension scheme, and training opportunities.