Director of Security and Compliance safeguarding digital assets and data with a focus on cybersecurity and compliance. Leading risk management, stakeholder engagement, and team leadership initiatives.
About the role
- Senior Consultant Cybersecurity role developing and enhancing cybersecurity services in Stuttgart. Part of a strategic project to establish a leading consultancy in the DACH region.
Responsibilities
- You will play a central role in establishing and further developing our cybersecurity hub in Stuttgart and actively shape its structures and processes.
- In your role you will advise on governance, compliance and regulatory requirements (e.g. DORA, NIS2, ISO 27001), prepare audits and communicate the key areas for action to decision-makers in workshops.
- In Offensive Security you will plan and conduct penetration tests, oversee vulnerability management and perform re-tests exclusively within the EU.
- As part of the Secure SDLC you will support projects with architecture reviews, secure-coding coaching, security checks in CI/CD pipelines and by performing SAST and DAST analyses.
- You will work on projects in highly regulated and security-critical sectors (financial services, critical infrastructure (KRITIS), public administration) and collaborate within an international delivery model with our teams in the DACH region, Sweden and Egypt.
- By developing methods, templates and best practices you will lay the foundation for a sustainable and efficient way of working in our new cybersecurity practice.
- You will support PreSales in the preparation of proposals, scoping and client presentations.
Requirements
- You have successfully completed a degree in (business) computer science or can demonstrate an equivalent qualification.
- You have built substantial experience over the years in Security Advisory, Offensive Security or Secure SDLC.
- You are proficient with relevant standards and technologies such as ISO 27001, BSI IT-Grundschutz, penetration testing methodologies (PT methodology), SAST/DAST and vulnerability management.
- With your quick grasp, strategic thinking and analytical skills you master complex challenges.
- You communicate convincingly and present technical content clearly — including to management.
- Very good German (C1), business-fluent English and a clean criminal record (certificate of good conduct) are three essential prerequisites for joining us.
Benefits
- Mobile working
- Flexible working hours
- Exciting projects
- Modern hardware
- Attractive, performance-based compensation
- Personal development and training
- Career progression
- Company events
- Health and wellness benefits
- Sports programs
- Retirement provision
- Family-like atmosphere
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Information Security Risk & Compliance Analyst supporting the maintenance of ISO 27001 standards. Contributing to risk assessments and compliance across AAB’s Business Protection Team.
Information Security Risk & Compliance Analyst at AAB managing compliance with ISO 27001, supporting enterprise risk assessments and enhancing information security systems.
Information Security Risk & Compliance Analyst at AAB focusing on ISO 27001 compliance and information security management. Collaborating across teams to ensure robust risk and compliance frameworks.
Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.
Cloud Security Architect supporting federal customer projects focused on architecture and security solutions. Conducting risk assessments and defining security requirements within a cloud environment.
Information Security Specialist responsible for enhancing cybersecurity posture through incident management and compliance. Collaborating with cross - functional teams to monitor threats and implement security measures.
Senior Lead Info Security Architect leading and collaborating on cybersecurity solutions at TIAA. Responsible for secure design and implementation of cloud security strategies and practices.
Part Time Security Officer providing protection for Collector's personnel and assets at trade shows across North America while reporting to Security Shows & Transportation Manager.
Enterprise Security Architect at PBCN GmbH designing and implementing security architectures. Collaborating with teams to ensure application security and conducting risk assessments.