CYBER SECURITY GRC CONSULTANT (D/F/M)

Job Description

Job Description:

• Conduct information security risk assessments using established qualitative and/or quantitative methods, contribute to the development of security strategies and propose corrective measures for small to medium-sized consulting projects
• Support the development and implementation of security policies and procedures for the entire organization, ensure compliance with cybersecurity regulations, and raise awareness by training employees on best practices
• Definition and monitoring of functional and technical mitigation plans, methodological and technical monitoring, and data analytics
• Plan and lead sub-tasks or smaller components of consulting projects and participate in consulting projects of medium size
• Apply consulting methods independently while documenting and presenting results internally and externally
• Design and delivery of awareness and training to internal and external customers
• Improvement of existing processes and toolings within the area of responsibility
• Identify opportunities for further customer support and forward them to the account management team (cross-/up-selling support)
• Conduct internal audits to verify compliance and recommend improvements based on standardized checklists and guidelines
• Collaboration in the preparation of offers and company presentations
• Taking on functional and/or project-related tasks in projects (e.g., technical project planning, sub-topic responsibility)
• Preparation of required documentation and presentations of work results

Required qualifications
The job requires knowledge and skills that are usually acquired through a relevant, completed degree with a standard period of study of up to 4 years in the field of engineering, computer science, cybersecurity or comparable courses of study and related subject-specific additional qualifications or through a relevant, completed degree with a standard period of study of more than 4 years with a degree or completed vocational training with a corresponding particularly extensive subject-specific additional qualification. The total required knowledge and experience may have been acquired in other ways

Skills and competences

• Good understanding of major security management frameworks (ISO 2700X, BSI IT-Grundschutz, NIST CSF, IT/OT Governance, ISO 31000)
• Understanding of security technologies, controls, and best practices
• Ability to maintain and update security policies, procedures, and standards
• Experience working in Governance projects and security initiatives; experience with ISMS implementation is a plus
• Knowledge of regulatory requirements across industries (NIS2, GDPR, etc.) and experience with GRC platforms and risk management tools
• Ability to communicate complex security concepts clearly to non-technical stakeholders
• Ability to advise the customer regarding their requests and objectives within the project scope
• Cultural sensitivity for working with international teams
• German and English: negotiation level mandatory (speaking and writing)
• Willingness to travel domestically and abroad

A security clearance is required for this activity or must be issued by the responsible authorities

Location
Our location is just a stone's throw away from Munich, the beautiful state capital of Bavaria. Do you like sports and other outdoor activities? The Alps and Lake Starnberg are just an hour away and offer a wide range of leisure activities.

If desired, your place of work can also be flexibly determined between our locations within Germany, provided the company agrees. These are as follows: Ottobrunn (Munich area), Donauwörth, Friedrichshafen, Cologne, Finkenwerder (Hamburg). If the company agrees, the specified location will be agreed in writing in your employment contract as part of the hiring process.

Advantages at Airbus Protect

• Mobile working and flexible working hours
• Fair and attractive remuneration and special payments
• 30 days' holiday and additional days off for special occasions
• Intensive induction and expert support as part of onboarding in the form of personalized onboarding with a personal mentor
• Excellent training opportunities and promising development prospects
• Attractive social benefits and offers, including employer-financed pension scheme, employee share options, discounted car leasing, bike leasing, special conditions for insurance, employee benefits at cooperating companies
• On-site facilities (depending on location) e. g. canteen and cafeteria, fitness studio, on-site kindergarten, company medical service and other health-related services

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

Company:
Airbus Protect GmbH

Contract Type:
Permanent

Experience Level:
Professional

Job Family:
General Security

By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to emsom@airbus.com .

At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.