Cybersecurity Professional – Policy and Compliance Specialist (f/m/d)

At Siemens, we build technology solutions to shape the world we live in. We transform industries and societies by combining the real and digital worlds. With over 300,000 of the world’s most forward-thinking minds and a presence in more than 190 countries, we make a truly global impact.

• Create a better #TomorrowWithUs

Your mission will be…

1. Policy Development and Implementation: Develop, update, and enforce cybersecurity policies, circulars, instructions, and procedures. Ensure policies align with internal rules as well as financial industry best practices and regulatory requirements. Collaborate with cross-functional teams to integrate cybersecurity policies into all aspects of the business.
2. Regulatory Compliance: Monitor and interpret relevant regulations and standards affecting cybersecurity. Ensure compliance with legal and regulatory frameworks, such as DORA, ISO 27001, and sector-specific regulations. Liaise with regulatory entities and prepare necessary documentation for audits and assessments.
3. Metrics Monitoring and Reporting: Develop and track key cybersecurity metrics to measure the effectiveness of security controls and the program. Generate regular reports on cybersecurity posture, cyber risk, and compliance status for senior management and stakeholders. Analyze metrics to identify trends, areas for improvement, and cyber risk mitigation strategies.
4. Alignment and Collaboration: Ensure alignment between Siemens Financial Services Cybersecurity (SFS CYS) and the SFS Business Units, Countries, and Entities. Work closely with project and functional leads and the respective cybersecurity officers to coordinate second-line cybersecurity activities. Support project teams during development, project management, and service delivery.

• Education: Bachelor's degree or equivalent in Computer Science, Information Technology, Cybersecurity, or a related field, along with long-term professional experience.
• Experience & Skills: Strong understanding of cybersecurity principles, frameworks, and cyber risk management best practices. Experience with cybersecurity metrics, monitoring tools, and reporting methodologies. Knowledge of regulatory requirements and standards (e.g., DORA, ISO 27001, NIST CSF). Relevant cybersecurity certifications (e.g., CISSP, CISM, CRISC) are highly desirable.
• Ways of working: Excellent communication and interpersonal skills. Strong analytical and problem-solving abilities. Ability to collaborate effectively with cross-functional teams. High level of integrity and dedication to ethical practices.

Please attach your CV in English.

#Siemens

Siemens is committed to creating a diverse environment and is glad to be an equal opportunity employer. We strongly encourage applications from a diverse talent pool!