Senior Consultant, ISMS & Regulatory Compliance

🕒 May 28

🗣️🇩🇪 German Required

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of PEC project engineers & consultants GmbH

PEC project engineers & consultants GmbH

201 - 500 employees

Founded 2008

Engineering • Consulting • Project Management

PEC project engineers & consultants GmbH is a company that focuses on providing engineering and consulting services. With an emphasis on powering innovative solutions, PEC aims to deliver projects that resonate with empathy and connectivity to clients' needs. Their portfolio showcases a commitment to quality and responsiveness in project management, reflecting their role as a dependable partner in engineering and consultancy.

📋 Description

• You will help build the new practice that is currently being established. • You will be one of the first people shaping this area together with our Managing Partners — defining the portfolio and winning and delivering the first major mandates. • Responsibility for consulting projects in ISO 27001, NIS2, TISAX and DORA for clients in industry, automotive, healthcare and critical infrastructure. • Design and continuous improvement of Information Security Management Systems (ISMS), including risk management, determination of protection needs, action planning and audit support. • Conducting gap assessments, maturity analyses and third-party risk assessments. • Preparation for and support during certification and surveillance audits. • Advising CISOs, Data Protection Officers and executive leadership as a peer and trusted advisor. • Active development of the PEC cybersecurity portfolio: method development, tool selection (HiScout, verinice, ServiceNow GRC), and creation of reusable frameworks and templates. • Technical development and mentoring of junior consultants as the team grows. • Sparring partner for our Managing Partners on strategic account and proposal topics. • No boredom — engaging tasks in challenging projects at international top-tier companies!

🎯 Requirements

• At least 5 years of professional experience in ISMS and GRC consulting, preferably complemented by audit experience or in-house experience at a corporate group. • Solid knowledge of ISO 27001 and at least one additional framework such as NIS2, TISAX, DORA or NIST CSF. • Knowledge of BSI IT-Grundschutz is desirable. • Practical experience with ISMS tools such as HiScout, verinice or ServiceNow GRC. • Certification as an ISO 27001 Lead Auditor or Lead Implementer. • Additional certifications such as CISSP, CISA, CRISC or CISM are desirable. • Experience with risk and security assessments, determination of protection needs and the preparation of audit-ready documentation. • Confident presence at management level and strong communication skills. • Ideally experience with DevSecOps, cloud security or technical security consulting as complementary competencies. • Business-fluent German and very good English skills. • A desire to actively help build a business area rather than operate within established structures.

🏖️ Benefits

• Pioneer role with real scope to shape: you will help shape the portfolio, methodology and team. • Direct reporting line to our Managing Partners, with no hidden layers of hierarchy. • Individual training budget for certifications (ISO 27001 Lead Auditor, CISSP, CISA, CRISC). • Flexible working models, remote work, offices in Stuttgart, Frankfurt, Wolfsburg, Bremen and London. • Wide-ranging training and individual certification opportunities. • Empowered by Trust! We trust you. That’s why you will have a high degree of freedom. You can grow, drive your own initiatives and shape your role. • Remote work, flexible hours and attractive corporate benefits. • The PEC onboarding — with a personal buddy, monthly newcomer events and professional training. • Regular company events.

Apply Now

Similar Jobs

🕒 May 12

BeOne Medicines

10,000+ employees

Senior lead Compliance officer for BeOne's Healthcare Compliance program in Germany. Collaborating with global teams to manage healthcare compliance.

🗣️🇩🇪 German Required

🕒 May 8

HiSolutions AG

201 - 500

🔒 Cybersecurity

🏢 Enterprise

🤝 B2B

GRC Consultant for sales focusing on B2B SaaS solutions to enhance IT security for enterprises. Collaborating with teams to generate leads and manage customer relationships.

🗣️🇩🇪 German Required

🕒 April 21

Henry Schein

10,000+ employees

⚕️ Healthcare Insurance

💊 Pharmaceuticals

🤝 B2B

Quality and Regulatory Affairs role with Henry Schein, supporting compliance and product readiness in EMEA. Collaborating across countries and functions in healthcare solutions.

🕒 April 20

Compliance Manager at ZUFALL logistics group ensuring adherence to legal and ethical standards. Responsible for developing and managing the company's compliance management system to mitigate risks.

🗣️🇩🇪 German Required

🕒 April 16

Henry Schein

10,000+ employees

⚕️ Healthcare Insurance

💊 Pharmaceuticals

🤝 B2B

Supports EMEA-wide QA/RA operations at Henry Schein, ensuring quality management and compliance. Organizes regional meetings and drives multiple projects across countries.