Junior Consultant working on Cyber Security standards and customer advisory at MKS4U IT - Beratungs GmbH. Engaging in security assessments and developing long - term security strategies.
HE
Hybrid Cybersecurity Risk and Controls Framework Expert
Posted 4 months ago
About the role
- Cybersecurity Risk and Controls Framework Expert analyzing compliance and operational risk requirements related to cybersecurity at Hewlett Packard Enterprise. Developing frameworks and driving risk reporting.
Responsibilities
- Analyse the regulatory compliance, business and operational risk requirements related to cybersecurity and develop a framework against which control requirements can be defined and applied.
- Support Governance, Risk and Compliance (GRC) leadership in delivering various risk overview summaries.
- Contribute to the development of the Cyber risk governance framework by leveraging existing frameworks and approaches.
- Facilitate a gap analysis of the current processes against the Risk management framework.
- Provide subject matter expertise on the control framework, policies, standards and guidelines to ensure their effective development.
Requirements
- Bachelor’s degree in Information Security, Information Technology, Risk Management or a related field, or equivalent experience.
- CISSP, CRISC, or similar
- 5-7 years of experience in Information Security, IT Governance, and / or Risk Management
- 5+ years of experience working with various industry standards and frameworks on risks and controls (e.g. ISO 27001, NIST CSF, COBIT).
Benefits
- Health & Wellbeing
- Personal & Professional Development
- Unconditional Inclusion
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT - Security Consultant at Institut für Datenschutz und Datensicherheit guiding IT compliance and security strategies. Engage with clients to enhance IT security practices across Germany.
Business Development Representative creating and managing lead generation pipelines for cybersecurity solutions. Engaging with enterprise clients in Switzerland and Germany in a hybrid work model.
Information Security Officer responsible for developing and implementing security strategies at an IT service provider for the food and beverage industry. Engaging with teams and management on cyber risks and compliance.
Information Security Manager leading CISOaaS or GRC consultants for NVISO in Germany. Enhancing clients’ cybersecurity posture and driving strategic security initiatives.
Técnico de Segurança do Trabalho JR assisting with safety documentation and training for field activities at Arcadis. Focused on sustainable solutions in engineering and consulting.
Senior Security Engineer managing the vulnerability management program and collaborating with engineering teams at Causaly. Focused on cloud security and secure coding practices.
Infra Security Engineer focusing on endpoint security solutions in South Korea's urban mobility services. Collaborating on security architecture and threat detection initiatives.
Compliance Specialist managing documentation and policies for Orro's Information Security Management System. Supporting essential compliance activities across ISO 27001 and IRAP with strong attention to detail.
Senior Cyber Security Consultant supporting client cybersecurity development initiatives. Job focuses on administrative and technical aspects of cybersecurity within a collaborative consulting team setting.